59
How bad is Idea of .Zip as password manager?
(programming.dev)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 21 Jan 2024
59 points (82.4% liked)
Privacy
31255 readers
1401 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 4 years ago
MODERATORS
Files in archives upon being opened are temporarily extracted, which means your passwords there exist as plaintext files. If your system is secure and hardened enough against unauthorised %temp% access on Windows, probably it can work.
This depends on how the decompressor is implemented. It's certainly possible to do it all in memory.
I do not think the standard ZIP decompressor library used in OSes or in general purpose compression software does this. Probably much safer if using RAR.