You are viewing a single comment's thread from:

RE: A More Secure Setting for LastPass!

in #mac6 years ago

Thank you for your comment @anarcist69. I have a friend whose computer was hacked. They emptied all his crypto wallets, made several brute force attempt to crack the LastPass password and were not able to do so.

What you are showing me is interesting, but there is still the risk to lose the device, and your passwords, and somebody hacking in it. I believe it's easier to crack a device than a very secure server.

Sort:  

I beg to differ. Any good device should have a good encryption method for storing its data for me to even consider using it.

This particular device says that it uses a PIN number to access the additional AES-256bits key that will decrypt the data.

If someone was to steal the device AND the card they only have three attempts to guess the PIN before the card is disabled. Once that happens, unless they have some super computer there is no way they could crack the encryption code.

My experiences with servers show that even a slight slip up in security can compromise significantly. At least a physical device isn't exposed to the millions of devices that are connected to the internet.

Just my opinion and I thank you for yours :-)

I agree with your point, but all passwords are still lost when losing the device unless you can do a backup and store it in a very safe place?

In LastPass, my financial sites are in "Secure Notes" and I also remove 4 secret characters in the password, so if it's cracked, it's still not a complete password.

Coin Marketplace

STEEM 0.23
TRX 0.25
JST 0.038
BTC 95317.76
ETH 3302.38
USDT 1.00
SBD 3.31