|
|
|
|
|
|
by pwg
1238 days ago
|
|
|
And, just today, this floats across the HN front page: https://news.ycombinator.com/item?id=34545010 Click through to the CVE and you will find this: > NOTE: the vendor's position is that the password database is not intended to be secure against an attacker who has that level of access to the local PC. By storing your keepassxc file in a public repository you are providing an attacker access that is equivalent to a level of access for which the database is "not intended to be secure against". This is why doing what you are doing is a very bad idea. |
|
|