Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

There is practically zero scenarios where hacking ANY bitwarden account 20 years from now nets you anything useful.

If the concern is general encryption when you were concerned about a 20 year from now scenario, don’t send it.



> There is practically zero scenarios where hacking ANY bitwarden account 20 years from now nets you anything useful.

Bitwarden is a password manager, yes? What about cloud accounts of someone's employer, like an AWS account that runs $1,000,000 of monthly assets? That wouldn't be valuable in 20 years?

What about VPN credentials for some big tech intranet? Yeah, hopefully they use MFA and they expire passwords before 20 years, but just in case, right?

I can certainly see nation-state actors hanging on to juicy encrypted password manager vaults, just on the off-chance they could hit the jackpot. I can think of plenty of accounts that would still be valuable and enabled 20 years from now.


Twenty years ago we had Windows XP.

You think AWS accounts are going to have a simple password requirement in the same time?

You don’t think twenty years from now that everything is a multifactor / immutable likely-bio hardware key?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: