Password managers don't have to be perfect, they just have to be better than not having one https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/ … via @NewsBlur
-
-
Replying to @flameeyes @NewsBlur
Well, RCE is a lot worse than website passwords getting compromised. The LP vuln popped a calc.
2 replies 0 retweets 0 likes -
Replying to @RichFelker @NewsBlur
Also
@taviso's showerbug was nearly a new class of vulnerabilities.1 reply 0 retweets 0 likes -
Also the ability to pop calc was a browser priv model bug. Extensions should not be able to exec host code, ever.
1 reply 0 retweets 0 likes -
Replying to @RichFelker @flameeyes and
I don't think anyone has been talking about this aspect...
1 reply 0 retweets 0 likes -
That was using the "binary component" of LastPass, I'm sure Tavis did indeed talk about that before.
1 reply 0 retweets 0 likes
Oh, that makes it somewhat less interesting and more LP's fault for encouraging users to install a binary...
3:06 AM - 4 Apr 2017
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.