this post was submitted on 10 Aug 2023
340 points (93.1% liked)

Memes

45718 readers
789 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
 

The inner circle so to speak

(page 2) 50 comments
sorted by: hot top controversial new old
[–] LesbianLiberty@hexbear.net 3 points 1 year ago (3 children)

What's bottom right? Top is Bitwarden and Left is Mullvad VPN

[–] ahornsirup@artemis.camp 3 points 1 year ago

Tutanota, an email service.

[–] johnbrownwasright@hexbear.net 3 points 1 year ago

that's Tutanota

[–] blobcat@kbin.social 2 points 1 year ago

tutanota, an email service

[–] sabreW4K3@lemmy.tf 2 points 1 year ago (11 children)

tutanota is terrible though

load more comments (10 replies)

mine is larger for sure

[–] Gnubyte@lemdit.com 2 points 1 year ago

As a US consumer, I can't use a lot of these VPNs. When you dig into how local governments are trying to break encryption in many countries overseas it makes you slow to sign up for services. The worst case would be you use a service, get invested and a few weeks later new legislation you're not following/in the know about gets passed and some of your data is now in some foreign governments jurisdiction more so than it was before.

It's not that Germany or Sweden in particular do that today but I also haven't quite looked into its bounds, if five-eyes alliance reaches them, etc. There is a lot you have to be cognizant of.

Also I like Bitwarden but Vaultwarden is the way to go; just make sure to donate/pay somehow for bitwarden if you use its clients.

[–] IzyaKatzmann@hexbear.net 2 points 1 year ago (1 children)

Had anyone heard of or tried buttercup? Any thoughts?

I was mulling around the idea of using KeePass but it seems to be too inconvenient. The pretty UI and cool name makes me want to try buttercup.

[–] Eufalconimorph@discuss.tchncs.de 3 points 1 year ago (1 children)

KeePass + Syncthing is pretty convenient.

Buttercup looks to be using AES-CBC with PBKDF2 and no authentication, but I only took a very brief look so I may have missed important details. That's not secure if an attacker can alter the vault file, and PBKDF2 isn't a great KDF to use. If you use this, you definitely need a 128-bit or higher entropy passphrase (10 Diceware words). You usually want that anyway, but using a weaker string for your master password will be less secure than you expect compared to something using a modern KDF.

[–] IzyaKatzmann@hexbear.net 1 points 1 year ago

Thanks for the insightful response. I'm gonna spend some time searching for all those terms you mentioned because much of it is stuff I've only heard in passing or never heard of at all. I'll try to find what works well enough for me. Wish me luck!

load more comments
view more: ‹ prev next ›