For me it’s the paranoia surrounding webcams. People outright refuse to own one and I understand, until they go on and on about how they’re being spied. Here’s the secret - unplug the damn thing when you think you won’t use it or haven’t used it in a while.

They, whoever it is, can’t really spy on you on something that’s already off and unplugged!

  • Hexagon@feddit.it
    link
    fedilink
    arrow-up
    149
    ·
    3 months ago

    Password managers. People will use anything but that: paper, notes app (without any security), using the same password everywhere…

    • jonwyattphillips@lemmy.ml
      link
      fedilink
      arrow-up
      19
      ·
      3 months ago

      Eh, I don’t trust any 3rd party enough to give them all my passwords and I don’t trust myself enough to secure a server for self hosting a password manager.

      I know all my passwords, can’t forget em, no paper or notes, no repeat passwords.

      • Grunt4019@lemm.ee
        link
        fedilink
        arrow-up
        56
        ·
        3 months ago

        If you know all your passwords and can’t forget them, I’m assuming your using some sort of pattern to remember them in which case you have a major issue in case of data breaches as your other passwords can be guessed.

        • bitfucker@programming.dev
          link
          fedilink
          arrow-up
          5
          ·
          3 months ago

          Just as a heads up, sometimes the pattern is not that easy for computer to brute force. As an example, my old password contains a birth date but with an alternating shift making them a combination of digit and symbol.

          • cynar@lemmy.world
            link
            fedilink
            English
            arrow-up
            7
            ·
            3 months ago

            The issue is if you are a) targeted, and b)involved in multiple breaches. If they can get the pattern, they potentially get everything.

            Is it worth it? That depends. Are you willing to risk it NOT being worth it to a random guy in Africa earning a few $ a day?

        • HelixDab2@lemm.ee
          link
          fedilink
          arrow-up
          9
          ·
          3 months ago

          Technically you could use PGP to encrypt a .txt file with all your passwords in it. Which would be more or less the same thing with a lot less polish to it.

            • HelixDab2@lemm.ee
              link
              fedilink
              arrow-up
              2
              ·
              3 months ago

              PGP is ‘pretty good privacy’; it’s an encryption standard. It’s not the best, but it’s fairly easy to use, and it going to resist decryption pretty well, for most use-cases. The idea is that you have a public key, and a private key. The public key allows messages to be encrypted, while your private key allows decryption.

          • communism@lemmy.ml
            link
            fedilink
            arrow-up
            10
            ·
            3 months ago

            I looked it up for you; you can export your Proton Pass database as a .csv file and then import it into KeePass. Not sure about KeePassDX but on XC, there’s a csv import option. There’s also a json import option but it says BitWarden for that so I’m not sure if the json Proton Pass exports is in the same structure as KeePassXC expects.

            • Wild Bill@midwest.social
              link
              fedilink
              arrow-up
              2
              ·
              3 months ago

              Thanks for the answer! Another question: does saving the data on KeepassDX keep all the passwords and such for me to import to other apps if needed? Or what does the file include?

              • communism@lemmy.ml
                link
                fedilink
                arrow-up
                4
                ·
                3 months ago

                You can export as csv, html, xml from KeePassXC. Dunno about DX but you can just try it on your desktop if it’s not an option on mobile.

                You know I’m looking up all these answers right? I don’t mean to be rude but you can and should just look these up yourself. You can check import and export options by opening keepassxc/keepassdx and checking for yourself

                • Wild Bill@midwest.social
                  link
                  fedilink
                  arrow-up
                  3
                  ·
                  3 months ago

                  Yeah, you’re right. Sorry, I definitely have a tendency to treat Lemmy as a search engine sometimes. Nonetheless I appreciate you answering me!

      • EveryMuffinIsNowEncrypted@lemmy.blahaj.zone
        link
        fedilink
        English
        arrow-up
        20
        ·
        edit-2
        3 months ago

        Fucking THANK YOU.

        A very good friend of mine doesn’t use any password manager. I’ve often in the past told them why don’t they? They argue that then all their passwords would be gone if they forget that one master password. Okay, I say, how the fuck is having to remember 1 password harder than having to remember 20 passwords?

        • subtext@lemmy.world
          link
          fedilink
          arrow-up
          2
          ·
          3 months ago

          Any good password manager nowadays also has an account takeover feature if you opt in. Basically your spouse / child / parent can take over your account to recover it for you if you can’t get in.

    • absGeekNZ@lemmy.nz
      link
      fedilink
      English
      arrow-up
      9
      ·
      3 months ago

      Came to say this exact thing.

      FFS I have 100’s of passwords saved in my keepass DB, they are all different.

      Passwords will only autofill on the correct site, so look alike sites are captured by that simple bit of security.

    • ClassifiedPancake@discuss.tchncs.de
      link
      fedilink
      arrow-up
      6
      ·
      3 months ago

      I keep trying to convince my parents. Then they say but what if I forget the master password? I say they won’t with a passphrase but they don’t believe me.

      Also I don’t have experience with PW managers other than 1Password, Bitwarden and Roboform. I personally didn’t like Bitwarden. I think it’s UI is janky and oldschool. Roboform is so bad I don’t even know where to start complaining. So I keep using 1Password even though the UI has been getting worse but it still works for me because of the good integration into the Apple ecosystem. But it’s rather expensive for managing the 20 something passwords my parents have. I read about breaches on other PWMs sometimes so I don’t really know what to trust and recommend.

      • scarilog@lemmy.world
        link
        fedilink
        arrow-up
        6
        ·
        3 months ago

        Set my family up with Bitwarden. Had them think up good passwords, told them not to tell me, etc. etc. they went and promptly forgot it.

        One of these days I’m going to set them up again but this time I’m going to have to save their master passwords on my account.

      • hanabatake@lemmy.ml
        link
        fedilink
        arrow-up
        5
        ·
        3 months ago

        Show them you can export the passwords and print them. It will help them to make the switch to know they cannot lose everything because it is on paper. It is what helped my parents

      • pr06lefs@lemmy.ml
        link
        fedilink
        arrow-up
        3
        ·
        3 months ago

        Keepassxc works fairly well for me, with a few quirks. Don’t know how it is on apple though.

    • amelia@feddit.org
      link
      fedilink
      arrow-up
      3
      ·
      2 months ago

      I keep telling myself I need to start using a password manager but I’m worried I won’t be able to log into things on my phone or other devices like my work computer when I need to because I don’t know the password. Is that a legitimate worry or is there a solution for this? How do you sync passwords between computer and phone?

      • Scrath@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        1
        ·
        2 months ago

        I hse keepassxc and store my password database in onedrive. My phone has an app keepass2android which can read the database in onedrive.