undefined | Better HN

0 pointswccrawford5y ago0 comments

Yup. And they are, technically, because if someone has that one login and password, they can access all your accounts.

But it turns out that keeping that 1 login and password in your head and trusting the rest to your password service (especially if you let it make random passwords) is way more secure than what people do if they have to try to keep them all in their head.

So it's about relative security. Both sides are correct, in their narrow views of the situation.

0 comments

yoz-y5y ago

I believe security should optimise for the threat levels on the order of importance. No.1 is password reuse, which is what password managers solve.

j / k navigate · click thread line to collapse

0 comments

yoz-y5y ago

I believe security should optimise for the threat levels on the order of importance. No.1 is password reuse, which is what password managers solve.

j / k navigate · click thread line to collapse