Cybersecurity

9966 readers

144 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

Is it bad to save passwords to browser? (lemmy.ml)

submitted 2 weeks ago by OhVenus_Baby@lemmy.ml to c/cybersecurity@sh.itjust.works

9 comments fedilink hide all child comments

The autofill prompt in browsers like librewolf. Or should you save passwords with a manager? I like the aspect of autofilling passwords and certain data.

you are viewing a single comment's thread
view the rest of the comments

[–] BentiGorlich@gehirneimer.de 1 points 2 weeks ago (1 children)

Well I mean only when you have a master password for them, otherwise even if they are encrypted, one can just decrypt them like the browser would. Am I mistaken? Because in my mind storing passwords in browser is basically a password manager without the encryption...

[–] eerongal@ttrpg.network 1 points 2 weeks ago

password managers in the browser still store them encrypted. They usually authenticate via a passkey, in-built security in the OS like windows hello, or through other services such as SSO through google; That said, if you have them on auto-pilot with this authentication, anyone with access to the device can theoretically access them, though to actually view them in the password manager they usually require you to authenticate.

Browser password managers are sorta less secure than a third party one, assuming you turn on all the convenience features to make your life easier, but a lot of third-party password managers have the same convenience features a lot of the time anyways.