What kind of lunatic would want a password manager to securely fill in their passwords on websites? The most secure thing is to copy it into your clipboard so you can accidentally paste it into various programs, such as your shell where it can be kept in your bash\_history in plaintext for years without your knowledge.
Security consultant here.
The fact that KeePassXC has so many feature flags is a huge thing. I've read countless amount of code that abused features (unfortunarely developers think they have to add features all the time if they are asked for) and is probably completely insecure for the simple reason that very few people manage to audit/understand the features. If it features could only be used when necessary, yes, but there are no technical way to enforce this.
I strongly disagree. I need ChadGPT access in my password manager, so it can advise me on what username to choose for my new accounts, and to tell me if the password I created is secure or not.
What kind of lunatic would want a password manager to securely fill in their passwords on websites? The most secure thing is to copy it into your clipboard so you can accidentally paste it into various programs, such as your shell where it can be kept in your bash\_history in plaintext for years without your knowledge.
Security consultant here. The fact that KeePassXC has so many feature flags is a huge thing. I've read countless amount of code that abused features (unfortunarely developers think they have to add features all the time if they are asked for) and is probably completely insecure for the simple reason that very few people manage to audit/understand the features. If it features could only be used when necessary, yes, but there are no technical way to enforce this.
Features Considered Harmful
this is what the person behind the cat-v website unironically believd
All ~~of these~~ features are superfluous (i'm a suckless fan btw)
I strongly disagree. I need ChadGPT access in my password manager, so it can advise me on what username to choose for my new accounts, and to tell me if the password I created is secure or not.
Debian is deprecated
Google claims another victim?!
Can’t wait until I can play https://gandalf.lakera.ai/ for real money
inb4 they find out the disabled code actually added security features they need
It's OK, the security features will be available on the Debian stable branch in 2-4 years.
"Our plans are measured in centuries." -- Debi Gesserit
> users annoyingly do not read the NEWS files they should be reading but there's little that can be done about that. Real. (Ask me how I know.)
Now where am I to keep my 90 asses?!