Is it true that @LastPass stores your passwords-server side and doesn't use client-side encryption? o_O
-
-
-
@thibaut_barrere@capotej talking to people who claimed that
End of conversation
New conversation -
-
-
@bascule Nope, we use client-side encryption - were you looking at a particular source? -
@LastPassHelp OH on IRC, probably not the best source ;) -
@bascule Ah :) Some details are available here: http://bit.ly/oJFRG9 happy to address any further questions/concerns.
End of conversation
New conversation -
-
-
@bascule According to their site, all en/decryption occurs locally, never on the server. All they get is a blob. https://lastpass.com/whylastpass_technology.php … -
@presidentbeef@bascule@capotej@thibaut_barrere Would be interested in security ppl's thoughts/opinions on@passpack - End of conversation
New conversation -
-
-
@bascule the website uses js crypto served over ssl (suboptimal, i know) but if you use their browser extension it uses real crypto locallyThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@bascule not that i know of, afaik its all encrypted locally and you just upload a blob to themThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.