mastodontech.de ist einer von vielen unabhängigen Mastodon-Servern, mit dem du dich im Fediverse beteiligen kannst.
Offen für alle (über 16) und bereitgestellt von Markus'Blog

Serverstatistik:

1,5 Tsd.
aktive Profile

#passwordmanager

6 Beiträge6 Beteiligte0 Beiträge heute
Chad McCullough :Debian:<p>Well, great. Now <span class="h-card"><a href="https://fosstodon.org/@bitwarden" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bitwarden</span></a></span> is going to ad AI bullshit to their services. I left Bitwarden a few months back for different reasons but I'm kind of glad that I did. I switched to @1password@1password.social. If they add AI to their services (are they already?), I'm just going to call it quits on all of them and just move completely to @keepassxc@fosstodon.org. I can simply just host my own with Keepassxc and not have to worry about any AI crap. I'm using Keepassxc now but not for everything. That might change in the very near future.<br><br><a href="https://nerds.xyz/2025/07/bitwarden-mcp-server-secure-ai/" rel="nofollow noopener" target="_blank">https://nerds.xyz/2025/07/bitwarden-mcp-server-secure-ai/</a><br><br><a href="https://polymaths.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>passwordmanager</span></a> <a href="https://polymaths.social/tags/privacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>privacy</span></a> <a href="https://polymaths.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a><br><br></p>
passbolt<p>Researchers in the article “ShieldFlow: A Security Framework for OT Systems” (International Journal of Information Security, Springer 2025) highlight passbolt’s role in helping industries securely manage credentials, demonstrating the relevance of open source tools in operational technology (p. 18).</p><p>Check out the book here: <a href="https://link.springer.com/article/10.1007/s10207-025-01083-3" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">link.springer.com/article/10.1</span><span class="invisible">007/s10207-025-01083-3</span></a></p><p><a href="https://mastodon.social/tags/OTSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTSecurity</span></a> <a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a></p>
Out of Control :laravel: 🇨🇦<p>Apparently it is utterly impossible to program an app to automatically fill in a password based on subdomain or port.</p><p>example.com vs site1.example.com vs example.com:9993</p><p>Would love a password manager that recognize those as having different logins. People have been asking for this from 1Password since at least 2013, and their reply is basically, you don’t really want that. Apple Passwords, same issue. </p><p>Anyone know of an app that can do this on macOS? </p><p><a href="https://phpc.social/tags/1Password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>1Password</span></a> <a href="https://phpc.social/tags/passwordmanager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>passwordmanager</span></a> <a href="https://phpc.social/tags/passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>passwords</span></a></p>
passbolt<p>Interested in automating Passbolt deployment through Ansible? There's detailed documentation for installation via Ansible playbook.</p><p>This installation method is recommended for experienced users proficient with Ansible and requires a clean Debian 12 or Red Hat 9 server.</p><p>Documentation: <a href="https://www.passbolt.com/docs/hosting/install/pro/ansible/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">passbolt.com/docs/hosting/inst</span><span class="invisible">all/pro/ansible/</span></a><br>GitHub repo: <a href="https://github.com/passbolt/passbolt-ansible-playbooks" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/passbolt/passbolt-a</span><span class="invisible">nsible-playbooks</span></a></p><p><a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.social/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ansible</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mastodon.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevOps</span></a></p>
The New Oil<p><a href="https://mastodon.thenewoil.org/tags/Bitwarden" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bitwarden</span></a>: “Hey <a href="https://mastodon.thenewoil.org/tags/Siri" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Siri</span></a>, make my <a href="https://mastodon.thenewoil.org/tags/password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>password</span></a> security smarter”</p><p><a href="https://bitwarden.com/blog/bitwarden-ios-app-intents-integration/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">bitwarden.com/blog/bitwarden-i</span><span class="invisible">os-app-intents-integration/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/iOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iOS</span></a> <a href="https://mastodon.thenewoil.org/tags/iPhone" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iPhone</span></a> <a href="https://mastodon.thenewoil.org/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a></p>
passbolt<p>Cybersecurity expert Alexander Blanc recently highlighted Passbolt Android 2.1.0's recent update. He covers performance enhancements and expanded translations, now accommodating users in 13 new languages. Open source as always.</p><p>Check out his insights in this post: <a href="https://www.linkedin.com/posts/alexandre-blanc-cyber-security-88569022_passbolt-release-note-210-passbolt-android-activity-7345833463536607232-tzvp" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">linkedin.com/posts/alexandre-b</span><span class="invisible">lanc-cyber-security-88569022_passbolt-release-note-210-passbolt-android-activity-7345833463536607232-tzvp</span></a></p><p><a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://mastodon.social/tags/AndroidApp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AndroidApp</span></a></p>
Karl Fredrik 🦊<p>Is there a term for the class of "credential storage confusion" <a href="https://chaos.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> issues, where the user accidentally saves a password or passkey in a vault they don't actively use (browser, <a href="https://chaos.social/tags/SSO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSO</span></a> IdP, <a href="https://chaos.social/tags/passwordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>passwordManager</span></a>, OS)?</p><p>One thing that made me think of this is having to go through a separate step (like "use a different device") on Android to avoid enrolling the phone as passkey.</p><p>I can see how users spread active credentials across multiple services which seems like a massive <a href="https://chaos.social/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> issue to me...</p>
passbolt<p>In May 2025, Cybersecurity firm Cure53 performed a white-box security audit on Passbolt v5.1, covering the browser addon and API.</p><p>The audit confirmed passbolt's overall security posture is robust, with no critical vulnerabilities found. The report included important recommendations around enhancing data integrity mechanisms. </p><p>Results of the security audit and report are publicly available at: <a href="https://www.passbolt.com/incidents/passbolt-v5-1-security-audit-results" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">passbolt.com/incidents/passbol</span><span class="invisible">t-v5-1-security-audit-results</span></a></p><p><a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://mastodon.social/tags/SecurityAudit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAudit</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a></p><p>🧵⬇️</p>
Yes, But ⁉️<p>Just use a <a href="https://mstdn.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a> (like <span class="h-card" translate="no"><a href="https://fosstodon.org/@bitwarden" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>bitwarden</span></a></span>)<br><a href="https://mstdn.social/tags/Account" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Account</span></a> <a href="https://mstdn.social/tags/Accounts" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Accounts</span></a> <a href="https://mstdn.social/tags/AccountCreation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccountCreation</span></a> <a href="https://mstdn.social/tags/Register" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Register</span></a> <a href="https://mstdn.social/tags/Registration" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Registration</span></a> <a href="https://mstdn.social/tags/Password" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Password</span></a> <a href="https://mstdn.social/tags/Passwords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Passwords</span></a> <a href="https://mstdn.social/tags/StrongPassword" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StrongPassword</span></a> <a href="https://mstdn.social/tags/StrongPasswords" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StrongPasswords</span></a> <a href="https://mstdn.social/tags/ForgotPassword" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ForgotPassword</span></a> <a href="https://mstdn.social/tags/ForgotternPassword" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ForgotternPassword</span></a></p><p><a href="https://mstdn.social/tags/YesBut" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>YesBut</span></a> <a href="https://mstdn.social/tags/Comic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Comic</span></a> <a href="https://mstdn.social/tags/Comics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Comics</span></a> <a href="https://mstdn.social/tags/Meme" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Meme</span></a> <a href="https://mstdn.social/tags/Memes" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Memes</span></a></p>
passbolt<p>Live from Day 1 of Pass the Salt Conference 2025. 🧂</p><p>Passbolt returns as Platinum Sponsor of the three-day conference on free software and security.</p><p>The team is on site in Lille from 1–3 July with goodies available at the stand. 🎁</p><p>Livestream is available at → <a href="https://passthesalt.ubicast.tv/lives/live-pass-the-salt-2025/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">passthesalt.ubicast.tv/lives/l</span><span class="invisible">ive-pass-the-salt-2025/</span></a></p><p>Event details → <a href="https://2025.pass-the-salt.org/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">2025.pass-the-salt.org/</span><span class="invisible"></span></a></p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@passthesaltcon" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>passthesaltcon</span></a></span> </p><p><a href="https://mastodon.social/tags/pts25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pts25</span></a> <a href="https://mastodon.social/tags/PasswordManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PasswordManager</span></a> <a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a></p>

So #Microsoft #Authenticator could have be used as #passwordManager, but now they inform that they will delete all passwords in August?
Finnish traditionally are on vacation for July. So when people get back to work in August, they won’t remember their AD passwords and now MS in their infinite wisdom decided that you don’t need access to your passwords any more.
#InfoSec

cnet.com/tech/microsoft-will-d

CNETMicrosoft Will Delete Your Passwords in One Month: Do This ASAPMicrosoft Authenticator will start using more secure passkeys in August.
Fortgeführter Thread

(Linux news in original post)

FOSS NEWS

Proton Mail gets Newsletter view to manage all email subscriptions in one place:
proton.me/blog/proton-mail-new
(That's really cool. Now we can tell normies that Proton Mail has this feature and Gmail doesn't lol)

Proton Pass adds 14 new entry types, option to create custom types:
alternativeto.net/news/2025/6/
(Really tempting feature, but personally I would advise against storing every piece of sensitive data in one central database in the cloud. Proton can get hacked any time, like any other company, and also the new Swiss law can force them to hand over all that personal data in plain text, so you can mess up your privacy really badly. I'm not pointing fingers at Proton, but I think this update wasn't quite a good idea, it puts too much responsibility on them.)

Firefox 140 ESR released with unload tab feature, support for adding custom search engines in Search settings, support for keeping more or fewer pinned vertical tabs in view, "Select All" option for bookmarks on Android:
9to5linux.com/firefox-140-esr-

Firefox 141 beta is available with less memory usage on Linux, ability to drag a tab to the pinned tabs tray and drag it out to unpin it, etc.:
9to5linux.com/firefox-141-prom

Mozilla discontinues DeepSpeech, an embedded/offline speech-to-text engine:
phoronix.com/news/Mozilla-Deep
(GNOME: *drops a feature every few releases*
Mozilla: Hold my beer. *drops a service each week*)

(more FOSS news in comment)

Proton · Take charge of your inbox with Newsletters view | ProtonProton Mail's Newsletters view helps you manage email subscriptions, organize your inbox faster, and stay in control privately.

Cybersecurity expert Alexandre Blanc recently shared his take on Passbolt 5.2, highlighting its real-world benefits for teams.

He underlined its practical use for managing shared credentials in corporate environments and its strategic value as a self-hosted solution that is "made in Europe, with privacy by default."

Read his full LinkedIn post for more insights: linkedin.com/feed/update/urn:l

www.linkedin.comhttps://lnkd.in/eydccBTJ | Alexandre BLANC Cyber Securityhttps://lnkd.in/eydccBTJ 🔓 Running the latest passbolt password manager Release 5.2 ? If you didn't update yet, don't miss it ! 👑 Just own it ! Don't let your credentials management in random hands, or worse, in a browser ! (the worst place to save credentials to me is a browser) 💡 #Passbolt release 5.2 came with many enhancements, and I've been using the solution successfully in corporate environments, where it was perfect to handle shared credentials : ➡️ For all systems that do not allow individual accounts ➡️ For support teams that must share credentials to ensure a 24/7 support ➡️ For organizations that want to make sure it's all saved encrypted 🇪🇺 The solution is actually made in Europe, with #privacy by default as the growth driver. I repeat this, because it's a key aspect to me. 🔐 Security and privacy by design and by default. #cybersecurity #authentication #credential #pam #password #passwordmanagement #passwordmanager https://lnkd.in/eydccBTJ

The Passbolt Windows App version 2.1.0 is out. This release supports multiple URIs, custom icons and colours for resources using encrypted metadata.

Slovenian and Ukrainian language support now available.

Read about the full release in this link: hubs.li/Q03twkqb0

PassboltPassbolt Release Note: 2.1.0 - Passbolt Windows App 2.1.0: Multiple URIs and Custom IconsThe open source password manager for teams. Passbolt simplifies password management, helps prevent data loss, stores data securely and enables secure password sharing.