Hacker News new | past | comments | ask | show | jobs | submit login

How do you authenticate the password manager?



With Keepass you can use a yubikey or key file.


The context was to stop entering passwords into web sites. The password manager is run locally.


Passwords for websites are (hopefully) hashed locally. And more importantly, how does it make a difference whether you or the password manager types in the password into the web form?


> And how does it make a difference whether you or the password manager types in the password into the web form?

Well, because a hidden camera can observe a human typing their password, whereas a password manager does not need to press any physical keys.

However, a camera can observe a human typing a master password into their password manager, which is where I was originally going with the question.


I meant regarding local vs. nonlocal, what the GP objected to.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: