|
|
|
|
|
|
by friendzis
1235 days ago
|
|
|
> So this is not a risk if your threat model is "attacker obtains a copy of my .kdbx", but it is a risk if your threat model is "attacker can modify .kdbx without me noticing, and can access my local computer or a mounted network disk to read the exported passwords". No, the threat model is "the attacker can modify config file", which for default installation also means "the attacker can modify the executable". |
|
|