[ds]

The best password manager would be a physical device which requires a tap to unlock a password.

Trezor password manager got close, but it seems like they abandoned it and they never supported local (sd card) storage.

Basically, It would be a yubikey style device, secured by a master password. You could have nice browser plugins for listing all your available passwords and single click logins, etc.. Everything that lastpass/1password does from a UI standpoint.

The difference would be that decrypting/unlocking passwords would require you to physically tap on the device each time to approve the unlock- and the screen would say "Unlock password for github.com?". Basically, this system makes it impossible for some trojan remote-control virus to be able to get your passwords, even if they have your master password. The BEST they can hope for is just to sit quietly on your PC for months, slowly storing all the passwords you decide to unlock.

Alas, doesnt seem like this device is going to exist any time soon. As I said, the best bet was trezor but they dont seem to care about it anymore. Too bad, they were so close.

[jonahrd]

I like this, but what about mobile? What if you borrow a friends device?

Genuine questions. I want ease-of-use and security. Is it possible?

[0xCMP]

On iOS is the real question/problem and it's unclear if it would be workable outside a custom app to talk to it.

From a security perspective it'd be nicer to use FIDO2 normally and approve from a device where the secure password could be entered.

[stevelosh]

You can set this up with `pass` and a Yubikey: https://www.palkeo.com/en/blog/perfect-password-manager.html

[jiveturkey]

I'm building exactly that.

Trevor is a joke, security-wise. I literally laffed.

[ric2b]

> Trevor is a joke, security-wise.

Any links you can share?