![]() ![]() Just not in their current form (and inconveniently for 1P also not necessarily justifying a monthly fee.).Ĭlick to expand.Have you ever actually used any of this at all? Like, you're a subscriptor, a Yubikey should have been a freebie for you so you should have at least one. But I don't think there is much of AgileBits left at 1Password inc anymore.Īnd again, I can envision plays they could make, including their own hardware, even some future role for managers. They did that right here on the Mac Ach way way back in the day when they were still AgileBits, though to their great credit at that point a senior tech came by and corrected things later, said they'd fix the privacy data leaks, and then they followed through on that in the move from. They also have form over the years in terms of trying to relentless put a "happy vibes" shine on things that were bad or were transparently for their benefit not customers. ![]() And do you really think 1Password is going to have accounts that can only be logged into from certain PCs with the right hardware and not elsewhere? I actually advocated at one point for situationally access controlled vaults and they were strongly opposed. I don't expect a phone to be a second factor either, at least not without the kind of FIDO2 hardware security behind it Apple seems to be going for. With a token that requires a PIN or physical presence check your computer could literally be rooted or have a "technician from Microsurft Supportz" remote accessing around and there will still be some warning signs and limits on them.Īnd to be precise, the TOTP seed is stored in the vault, so any client with access to that vault has that key, no need for being "logged into your account". If it's being stored in a software vault that's shared around that completely defeats that aspect. FIDO2 goes beyond trusting a PC or phone in the general sense to ensuring actual hardware security. ![]() Ĭlick to expand.Yeah? I saw that, and I'm criticizing exactly that. I'm glad fallback options exist just in case. Not something I've done more then toy with a few times myself but it is what a few other techs I know use and can work. I will mention for completeness that there is another ecosystem of open source projects originating/based around KeePass but you'd need to be willing to get a lot deeper into the weeds for sync/sharing functionality and the like there. It's somewhat less polished, but it does have a full self-host option, both an official one (that requires a license file for certain features) an a community implementation in Rust called Vaultwarden which does everything, it's a cool project.Īt any rate, those are the two big alternatives to LastPass which should provide you with equivalent or better functionality under the same general terms. It's always been fairly polished as well.Īnother one of the big players is Bitwarden, which is similar overall though open source based, also has desktop and mobile apps for all the major platforms, also has a default cloud based functionality though with a decent free tier. It's pure subscription nowadays as far as I know which may or may not bother you, just something to be aware of. 1Password is certainly an option and while they've changed from real native into a webapp thing with 1P8 that framework itself is AS.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |