• 1 Post
  • 33 Comments
Joined 2 months ago
cake
Cake day: June 4th, 2025

help-circle



  • LastPass’s biggest problem was that they were almost the first in the game, and mistakes/choices they made 20 years ago bit them hard when they got hacked.

    There were two major issues with LastPass’s security model:

    1. Non-Password data wasn’t encrypted. So usernames and urls were visible by the people who stole the vaults.
    2. Passwords were encrypted with a number of iterations based on when the account was created, so older accounts were only run through a single iteration. The iteration process makes it much harder to guess the master password(by making it take a longer time). So single iteration makes it pretty quick to guess the password.

    So with flaw 1 you could see what vaults might have valuable passwords like banks and crypto wallets. And with flaw 2 you could reasonably quickly break into the vaults of long time users.

    So aside from their lax security allowing the compromise to happen in the first place (Nothing is fool proof), they weren’t providing the level of protection most people assumed.

    More modern password managers like BitWarden fixed those problem a long time ago.




  • As others have mentioned, the websites tend to be limited both by resolution and functionality.

    My TV supports CEC(most do these days) which will pass the remote input onto the devices connected to it, like a computer. Which means with Plasma Big Picture I can navigate with my remote, and any app that supports navigation with simple arrow key input would work great.

    Unfortunately, the streaming websites, last time I tried, absolutely suck at that and assume you are navigating with a mouse.












  • I’m a big fan of syncthing. It doesn’t rely on cloud services for storage, and can work 100% locally if you want it to.

    It isn’t perfect. It has a model of running a web server for managing the service which is a little strange. Because it is not backed by any cloud storage it means you are on your own to make sure you keep your copies safe.

    With those two issues understood, it is simple, fast, free, and and supported almost everywhere. I have it on my phone, laptop, desktop, and as a docker container on my NAS. Everything stays synced and the NAS does backups of the data.