@kdfrawg definitely a YMMV situation.
// @JeremyCherfas @hybotics
@kdfrawg it's like I said, web browsers in general are problematic. Think about how often they are patched for security vulnerabilities, yet we use them all the time.
I would be more worried about LastPass if they were less responsive about security issues than they are.
// @JeremyCherfas @hybotics
@hybotics Android phones only last a couple years before they start doing that. :P
// @matigo
@matigo if you pay full price for the device, that's should certainly be true. I'm pretty sure $30 is a subsidized price as, at least based on what I know from working at Nokia, $30 barely covers the cost of goods and getting the device into the channel (Target in this case).
@matigo that's one of them. The other device I was able to unlock for $2 (which is about the right price).
I can wait 6 months and have Cricket unlock it, but that seems silly.
@kdfrawg to be clear, I'm not saying the browser plugins are insecure, I'm just saying a lot of the security problems that have been found in LastPass have involved their browser plugins. A distinction without a difference, perhaps.
Of course, web browsers in general are problematic too.
// @JeremyCherfas @hybotics
@kdfrawg you do realize you can hit the Share button in Safari and share to 1Password, which will fill in the login information for you, right? It also works with LastPass. I use this all the time.
Android is a different story. I decided not to enable whatever accessibility feature was needed to perform the same task, which I figured was probably abusable somehow.
// @JeremyCherfas @hazardwarning
@jws I’ve only managed to achieve “no browser plugins” on the Mac, which is what I am primarily using right now. LastPass really encourages you to use browser plugins, though…
On the whole a password manager is going to enable better security to be practiced, even if it creates new risks that didn’t exist before. Most people are going to opt for a solution that has low friction, thus why a solution like LastPass is preferable and the changes 1Password are making are understandable.
Obviously if you are willing to tolerate friction, you can choose a “more secure” solution.
/@JeremyCherfas @kdfrawg
@peemee my first one was 5 megs. This is back in the days of 143k floppies of course. ?
/@matigo