• Gooey0210@sh.itjust.works
    link
    fedilink
    arrow-up
    1
    arrow-down
    2
    ·
    10 months ago

    because not all encryption is created equal.

    XChaCha20-Poly1305 is used by a lot of stuff, pretty solid thing

    Also password managers should lock after some seconds. You wouldn’t want your note taking app to lock as frequently as your password manager.

    I would love my notes to lock in some time

    The key to opsec is compartmentalizing.

    It’s more true for privacy and anonymity, but security doesn’t really care about compartmentalizing your everyday notes from your everyday passwords.

    And in general, some people might need some lighter approach for storing passwords, unless it’s some google keep, or some other plaintext, I think it should be fine

    • tengkuizdihar@programming.devOP
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      10 months ago

      Just for disclaimer, @Gooey0210@sh.itjust.works isnt me. I agree, even though the encryption used in treedome is pretty solid (imo), my note taking app is definitely not recommended for keeping your password. Use a dedicated password manager, open source one ofc. I think the lock time idea is good.

      But I did put my password there, for when I can’t access my other password manager. Backup of a backup of a backup.