The password manager is typically on a machine you control. If your machine is o... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

grzm on Dec 30, 2017 | parent | context | favorite | on: Your Mother’s Maiden Name Is Not a Secret

The password manager is typically on a machine you control. If your machine is owned, you've got issues regardless. A password manager provides a way to effectively utilize higher-entropy, per-account passwords. As with all security-related matters, it's a tradeoff. I expect many choose password managers for this reason.

Kiro on Dec 30, 2017 [–]

Pretty sure the typical password manager user does not control the machine.

grzm on Dec 30, 2017 | [–]

In terms of physical control of the machine? In terms of what software is loaded on the machine? Would you elaborate on what you mean "typical password manager user" and "does not control"?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact