On 2012-01-17 7:50 AM, Neil Bothwick <n...@digimed.co.uk> wrote:
On Tue, 17 Jan 2012 07:37:38 -0500, Tanstaafl wrote:
I'll stick with KeePassX, the password database is
stored and encrypted locally. Even if I put it on DropBox, hacking
that will only give the encrypted database.
And I'll stick with passwordmaker, which doesn't store the passwords at
all, anywhere...only the account settings used to generate them, which
are useless without the Master Password...
It comes to the same thing really. whether you store the passwords
themselves or the methods and data used to generate them, both systems
are as strong as the master password and useless if that is compromised.
So stick with whatever suits your way of working. Choice is good :)
This is actually not correct...
Since PWM doesn't store the passwords, there is nothing to 'crack'...
there would never be any way for an attacker who got ahold of your RDF
file to run an attack program against it - how would the attack program
ever be able to determine 'success'?
