• 0 Posts
  • 87 Comments
Joined 7M ago
cakeCake day: Aug 06, 2020

help-circlerss

You are right, when your master password gets stolen, the attacker doesn’t know which sites under which usernames you use, but it is not so hard to get to this information in these days, I’d say. Still, once the password is stolen, you won’t just say “Oh, nobody knows my username for sure, so I won’t bother changing it.” and I find the process of changing passwords much easier with a standard password-username-site database. And for sure, Lesspass solves other issues, but with all of its quirks / security features, Lesspass doesn’t interests me that much.


I have been using KISS launcher for a while, but the Todo Agenda fits it really well. Will have to play a bit with it for sure.


This one actually looks really nice. I might take some inspiration from your setup.


That’s so very true.


This is shown instead of the original comment if the author of the comment decides to remove his comment. For readability reasons the comment isn’t removed completely, only the text is replaced with this informational message – so we can discuss your question as a reply to the original deleted comment etc.


Ah, yeah. That’s me a few hours ago today… And an hour ago… I like the feeling of understanding and realization when you finally track the bug down though. Very satisfying.


It’s not so easy for sure, but still I feel it is much easier to change the master password to your database as well as other passwords, when you actually can change every password to every side individually (which you would have to do with Lesspass too) or not at all, if the site is not important enough right now. With Lesspass, you would have to remember both the old and the new password to be able to change the site’s passwords. It just seems safer to me this way. But you are right about it being difficult to get to a very sophisticated master password anyway, the same for the second point, I’d guess. When someone gets your Lesspass password, they have access to everything for sure. With, in my case, Bitwarden, there is possibly a chance it might be harder to get to the individual passwords one after the other. It is a bit more tedious to work with it, not just calling the algorithm at different websites to see whether you use these. But this is an interesting though.


I might have just found an amazing combo for my browsing and bookmarking requirements and fantasies. Thanks to your comment, I tried using SessionSync extension together with my xBrowserSync setup, and it works marvellously. It allows me now to quickly share and sync bookmarks as well as opened tabs while having everything backed up and available at all times on all of my devices. You can search for bookmarks and the opened tabs saved with SessionSync simultaneously. Thanks to any bookmark manager and SessionSync bookmark format, one can easily manage and arrange tabs and move them between bookmark hierarchy, postponed and saved tabs and sessions, and actual opened tabs, while still having the option of saving and opening different tabs presets (SessionSync sessions) saved as bookmarks in a single session (bookmark folder). It should be as secure as one can get too as xBrowserSync encrypts your bookmarks (together with SessionSync sessions) when sending them to syncing instances (which can be self-hosted, or one can use one of the public instances for free because nobody but you can decrypt your synced data anyway — at least shouldn’t be AFAIK). I must do a lot of testing and experimenting, but this might be something I have always wanted yet never was able to achieve with the browser functions and extensions I had at hand… This one looks promising. Thank you for mentioning SessionSync ❤ Maybe I won’t need to have 100+ tabs opened on every browser all the time now.


That’s actually a great use of Markor, I’d say. And it saves a lot of time too, when you want to operate on a strictly text file approach. Auto-generation of links seems to really fit the needs here.


OK, that seems interesting. Maybe Gemini could be capable of even more than I anticipated then. Will have to look into that.


I have been using xBrowserSync browser extension and Android app for this exact purpose for a while. It is originally meant for syncing bookmarks and I sync bookmarks with it too (even though it is a bit fidgety with some browsers — having problems with theirs bookmarks hierarchy (it can read it just fine, only the sync is a bit problematic), so I don’t sync the bookmarks with browser bookmarks usually, only having it as a separate bookmarks backup), it mainly serves as a FOSS Pocket alternative to me. Using tags and optional bookmark’s (link’s/tab’s) description, one can quickly search for required articles. The search is not perfect from what I have noticed, but it has never failed to show me the required bookmark after a few attempts. And there are plenty of free public instances to use if you don’t want to self-host. Should be private and secure. Using it for now, and I am quite content with what I get.

PS: Be careful not to erase all your bookmarks with it accidentally (read the instructions and backup your bookmarks first preferably).


Deedum works on Android too, but there are many other applications if necessary, e.g. Ariane.


I agree. This is exactly what was missing in my reply and I should have thought about that. Having an option to escape walled gardens is just as important, even if for example Gemini is not sufficient to replace the modern Web entirely.

You could mirror lemmy on gemini

Ye, but not communicate easily, allow multiple users to post etc. In general, if I am not mistaken, the problem with Gemini would be its passive, read-only nature from the point of view of a capsule’s visitor (not creator).


I am afraid that Gemini is not the answer in this case. Gemini is not supposed to replace the Web, it is supposed to coexist along the Web, meant for different use cases. One couldn’t host Lemmy on Gemini for example. If we want to find an alternative, we would need to look elsewhere, as far as I know.


Ye, it is. That’s why I was a bit confused there and wondered whether I have maybe missed something. Thanks for the explanation.


Why these quotation marks " around open-source? Is it only partially open-source or something?


Well now, I believe I have found what I will be doing in the following days. That looks awesome. Thank you.


Sorry, I didn’t understand what you were asking about earlier. Yes, exactly. That is the reason why I don’t use Lesspass. From what I know, you would have to change the password for every single website to ensure no one guesses your login used by some website, and consequently, with your leaked master password, has access to that particular site.


What do you want to backup? There is the master password, but that is it. Nothing more. You have to remember the master password, the website you were using, and possibly the login to that website, but there are no more passwords to backup. The algorithm to generate the password is the same for all of the passwords.


I am using Bitwarden as I find the standard database system more convenient yet still secure enough. Somehow, I still cannot believe myself with Lesspass. Otherwise, Lesspass is a fantastic “password manager” for sure.