[loteck]

The same massive flaw exists with your offline password manager. The gambit of this argument is that you (or more generally the public) are more capable of properly securing and storing secrets, instead of a company of experts hired to create, configure, update and audit a service to do so.

That's a call each person can make for themselves, but if I'm advising the normals on how to handle it, there's little doubt which direction I'm pointing.

[h1d]

I'm not talking about the security of the machine that holds the data. I'm saying any online password managers (without 2fa) can be unlocked with a single login, where offline password managers don't have such a severe problem.