nanog mailing list archives

Re: Google uploading your plain text passwords

From: Michael Thomas <mike () mtcc com>
Date: Fri, 11 Jun 2021 10:27:17 -0700

[sorry meant to send this to the list]

Isn't that what lots of password managers do? I understand that one of them
syncs point to point, but that has the downside that it probably needs to
be on the same subnet.

The actual problem here is that sites only allow a single password. if you
could enroll more than one password you wouldn't need to sync at all.
Better: use asymmetric keys and enroll public keys so the secret never
leaves your device.

Mike

On Fri, Jun 11, 2021 at 9:53 AM William Herrin <bill () herrin us> wrote:

On Fri, Jun 11, 2021 at 9:42 AM César de Tassis Filho
<ctassisf () gmail com> wrote:

Google does not have access to your plain-text passwords in either case.


If they can display the plain text passwords to me on my screen in a
non-Google web browser then they have access to my plain text
passwords. Everything else is semantics.

Regards,
Bill Herrin


--
William Herrin
bill () herrin us
https://bill.herrin.us/

Current thread:

Re: Google uploading your plain text passwords, (continued)
- - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Message not available
    - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Re: Google uploading your plain text passwords Josh Luthman (Jun 11)
    - Re: Google uploading your plain text passwords Alain Hebert (Jun 11)
- Re: Google uploading your plain text passwords Jan Schaumann via NANOG (Jun 11)
  - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Re: Google uploading your plain text passwords Eric Kuhnke (Jun 11)
- Re: Google uploading your plain text passwords César de Tassis Filho (Jun 11)
  - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Re: Google uploading your plain text passwords John Levine (Jun 11)
    - Re: Google uploading your plain text passwords Michael Thomas (Jun 11)
    - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Re: Google uploading your plain text passwords Michael Thomas (Jun 11)
    - Re: Google uploading your plain text passwords Peter Beckman (Jun 11)
    - Re: Google uploading your plain text passwords Matthew Petach (Jun 11)
    - Re: Google uploading your plain text passwords César de Tassis Filho (Jun 11)
    - Re: Google uploading your plain text passwords William Herrin (Jun 11)
    - Re: Google uploading your plain text passwords Damian Menscher via NANOG (Jun 11)
    - Re: Google uploading your plain text passwords Hank Nussbacher (Jun 12)
    - Re: Google uploading your plain text passwords Anoop Ghanwani (Jun 11)
    - Re: Google uploading your plain text passwords K. Scott Helms (Jun 12)

(Thread continues...)