Just realized that lastpass is built on php. arg wtf wtf. :-( Anyone audit their server-side code / encryption?
@kylemaxwell After speaking w ppl at #defcon this year, seems that php *can* be fine, but u can get in lots of trouble w built-in functions
-
-
@inthecloud247 even so: everybody "trusts" Lastpass but based on... what? (this includes me) -
@kylemaxwell Met Jeff from Agilbits/1password at#passwordscon &#defcon . He was ++great. Don't know anyone from lastpass so can't compare
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.