In a way, password managers are kinda the solution that prevent you from needing to involve a third party in your auth. You can even use completely open source software, and manage all the data yourself. That gives you way more control than say, oauth. Although sure, passkeys are better in many ways.
Even if we lived in a world where surveillance capitalism and personal data harvesting wasn’t a thing, you still need to identify yourself.
I agree, and I do use an open source one, but I disagree that we need to identify ourselves for everything. You can’t even look at a resturaunt menu anymore without signing up for an account. Everything is gate kept behind an account, and those accounts are all so interconnected that when one is compromised, it might for multiple and often you will never know (and I’m not talking about password reuse).
Password managers are a good solution to the problem, I’m not mad at them, I’m mad at the problem that necessitates them.
I agree that there’s too many websites that want you to make an account, and often data harvesting is the motive. What I’m saying is, even if that’s not the case, I would still need a password manager to log into various services that require auth as a core part of the service (email, banking, social media, services with my payment information, insurance, version control, anything work-related, any paid service)
Sure, but I still think there should be a way to do this without the need. Password managers are fine, again, not upset with them but still, it should be easy enough to not need one, at least for a normal person.
A lot of this is due to dealing with my elderly parents. They have so much of their lives reliant on services, but they are no longer capable of even figuring out a password manger. Even for important shit, there should be a better way to do this than having to keep track of hundreds of pieces of information. Passwords shouldn’t even be a thing we ever need to use unless we need to break glass. There are methods out there that work, but it’s so disjointed but also interconnected.
Honestly, no idea how it could be solved other than through legislation maybe. Fat fucking chance with the way the world currently works.
One way to deal with this I’ve been doing for a little while is to use a service that enables me to use email aliases. It’s mostly meant to avoid email address leaks, but will also make it harder for online services and companies to track you, since it’s a big point of tracking. You can also use it to figure out who sold your email address. Not a perfect solution, but it’s something. I’ve been using Proton. Whether or not you trust them is up to you, but they do offer this ability (I just can’t remember if it’s free or paid).
Oh, agreed, I do this as well. Again though, so much bullshit, why should we need dozens or hundreds of email addresses?
I feel like everyone is so used to needing accounts for everything, it’s just accepted as a given. When you go to the store to purchase a newspaper, should we have to bring our passport?
In a way, password managers are kinda the solution that prevent you from needing to involve a third party in your auth. You can even use completely open source software, and manage all the data yourself. That gives you way more control than say, oauth. Although sure, passkeys are better in many ways.
Even if we lived in a world where surveillance capitalism and personal data harvesting wasn’t a thing, you still need to identify yourself.
I agree, and I do use an open source one, but I disagree that we need to identify ourselves for everything. You can’t even look at a resturaunt menu anymore without signing up for an account. Everything is gate kept behind an account, and those accounts are all so interconnected that when one is compromised, it might for multiple and often you will never know (and I’m not talking about password reuse).
Password managers are a good solution to the problem, I’m not mad at them, I’m mad at the problem that necessitates them.
I agree that there’s too many websites that want you to make an account, and often data harvesting is the motive. What I’m saying is, even if that’s not the case, I would still need a password manager to log into various services that require auth as a core part of the service (email, banking, social media, services with my payment information, insurance, version control, anything work-related, any paid service)
Sure, but I still think there should be a way to do this without the need. Password managers are fine, again, not upset with them but still, it should be easy enough to not need one, at least for a normal person.
A lot of this is due to dealing with my elderly parents. They have so much of their lives reliant on services, but they are no longer capable of even figuring out a password manger. Even for important shit, there should be a better way to do this than having to keep track of hundreds of pieces of information. Passwords shouldn’t even be a thing we ever need to use unless we need to break glass. There are methods out there that work, but it’s so disjointed but also interconnected.
Honestly, no idea how it could be solved other than through legislation maybe. Fat fucking chance with the way the world currently works.
One way to deal with this I’ve been doing for a little while is to use a service that enables me to use email aliases. It’s mostly meant to avoid email address leaks, but will also make it harder for online services and companies to track you, since it’s a big point of tracking. You can also use it to figure out who sold your email address. Not a perfect solution, but it’s something. I’ve been using Proton. Whether or not you trust them is up to you, but they do offer this ability (I just can’t remember if it’s free or paid).
Oh, agreed, I do this as well. Again though, so much bullshit, why should we need dozens or hundreds of email addresses?
I feel like everyone is so used to needing accounts for everything, it’s just accepted as a given. When you go to the store to purchase a newspaper, should we have to bring our passport?