User avatar
charlotte @halva@mk.absturztau.be
3mo
i don't care how many attacks can lead to bitwarden leaking vault contents, im not paying for 1pass
2
0
1
0
User avatar
charlotte @halva@mk.absturztau.be
3mo
eprint.iacr.org/2026/058.pdf context
1
0
0
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@halva is vaultwarden affected by these bugs? they seem mostly server side oversights
2
0
0
0
User avatar
[GRLC] kasane greggins @novenary@akko.wtf
3mo
@illyBytes @halva got around to skimming the paper last night, these aren't server-side oversights but cryptographic protocol design flaws
password manager vaults are meant to be encrypted end to end such that a compromised server cannot leak your passwords
the paper shows several ways the server can mess with your vault's contents and in some cases coerce your clients to disclose plaintext to it
all in all it's probably not a huge risk since bitwarden gets regular code and security audits (which means bw servers being compromised is unlikely), but those problems need to be fixed regardless
🧡1
0
1
2
1
User avatar
charlotte @halva@mk.absturztau.be
3mo
@illyBytes perhaps maybe no but im not sure honestly

vw probably has its own garbage
1
0
1
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@halva yeah
tbh im just avoiding any shit with cloud providers by just using keepassxc/dx with syncthing
only had 1 conflict event but solved it by just merging the oldest file (the one renamed for conflict) into the newest file and deleting the old one lol
1
0
0
0
User avatar
charlotte @halva@mk.absturztau.be
3mo
@illyBytes synchronizing keepass is giving me aneurysms

i should probably move there though. if i put it on yandex.disk, im gonna have whitelist bypassable syncing which is a Concern here
1
0
1
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@halva its not gonna be an issue, if you decrease the period between checks or just enable filesystem watch lol
just dont do my mistake and forget to turn syncthing back on for a few days like i did x3 (what caused the conflict, 2 days ago)
1
0
0
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@halva but for the 2nd thing, idk anything about yandex disk so i dont how to deal with it's syncing
1
0
0
0
User avatar
charlotte @halva@mk.absturztau.be
3mo
@illyBytes it's practically a clone of gdrive

had enough syncthing bullshit in my life to never use it again
2
0
2
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@halva oop alright :p
0
0
0
0
User avatar
Meko @yura@udongein.xyz
3mo
@halva @illyBytes
had enough syncthing in my life to never use it again
Ahaaha. Almost me but in in my case I just have read to many people in the fedi getting syncthined before to not trust nor the app nor my hands for it's configuration cirno_laughing
1
0
1
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@yura @halva maybe cus i use file versioning or send only/receive only configs but my syncthing has survived like 5 migrations lol
0
0
0
0