Are people really using this lastpass thing? I took a quick look and can see a bunch of obvious critical problems. I'll send a report asap.
-
-
weren't keepass downloading unsigned updates over http and wouldn't fix due to ads?
-
binaries are signed, but still served over http afaik
- 1 more reply
New conversation -
-
-
that's my Pwd mgr; I recommend it to everybody
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
yeah I use Keepass myself
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I'm quite fond of KeePassX. It's what we use and recommend others use
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
you seen http://www.harmj0y.net/blog/redteaming/a-case-study-in-attacking-keepass/ … admittedly it is post expliitation
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
if by 'reasonable design' you mean 'horribly broken', https://news.ycombinator.com/item?id=9727297
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.