Orchestrating 1Password with PowerShell http://dlvr.it/TJBcH8 via PlanetPowerShell #1Password #PowerShell #Automation #Cybersecurity

If anyone is looking at #Jobs, particularly in #privacy and #security, #1Password has more than a few openings - https://jobs.lever.co/1password

Can anyone explain to me why the #1Password Safari extension is so insanely slow? It takes 30+ seconds for Safari to stop beachballing after unlocking (if I’m lucky and Safari doesn’t crash). Can we go back to everything we had with V7 please? No electron, and extensions that worked? So frustrating.

#1Password continues to degrade. No longer do I hope for it to get back to its v7 usability. Now I just hope it doesn’t get worse. I’m regularly reminded that hope is also in vain.

Today, *for the fifth time since 1P8 showed up *, I’ve turned this option off. I know it’s only a matter of time before I get another notification about how this super helpful feature has been enabled for me.

OK - another #tech thing for this non-tech person.

#Passwords.

Now, I currently use the #PasswordsApp and the #GooglePasswordManager.

But I'm not sure that I should be using either.

Is it better to have a dedicated #PasswordManager? Something like #1Password?

I don’t know what’s up with #1Password lately, but it keeps opening a new Safari browser tab saying I need to restart it, and I think it’s the cause of the spinning beachball I see often when browsing web pages with Safari. I uninstalled and re-installed it last week, and that seemed to fix the issue, but now, it's happening again.

Calling all #blind #Windows users! I'm looking for recommendations on #accessible SSH clients that work well with #1Password. I've been using Windows Terminal, but I'm not entirely satisfied. What do you use for SSH on Windows? #Accessibility #AssistiveTech #ScreenReader #BlindTech #tech
@1password @mastoblind @main

Finally a proper Dark Mode Icon for #1Password in iOS 18

Most excellent post from the @freekmurze 180th dev newsletter. If you are a 1Password user, perhaps you also didn’t know its dev tools were so powerful. Thanks Freek for sharing! A quick read:

https://flareapp.io/blog/using-1password-for-laravel-environment-variables

Just made the big switch from #1Password to #ProtonPass for that sweet, secure password magic!

But alas, my SSH keys needed a different castle.

@protonprivacy

Trying to find out in terminal/programmatically whether #KeePassXC or #1Password are unlocked is surprisingly annoying. For 1pass I think checking exit code of `op whoami` should work well enough, but I didn't find anything for keepass.
For the purposes of showing it in #starship prompt in my #shell ;D
#sysadmin #linux

@1password

Your status page is a little optimistic.

Can't say I am surprised, but seems #Bitwarden is moving away from #OpenSource as per github.com/bitwarden/clients/issues/11611

Glad I never jumped that train and went with @keepassxc instead, when leaving the #1Password enshittification train. Still happy with that descision.

Any project with #VentureCapital involved is a warning flag. I have seen so many nice software projects go down the #enshittification path, it's not even funny.

#passwordmanager #passwordmanagers #keepass #keepassxc

1Password have announced that they will support importing and exporting passkeys using the new FIDO Alliance exchange protocol and format. (Via @1password)

https://blog.1password.com/fido-alliance-import-export-passkeys-draft-specs/
- - -
1Password ont annoncé qu’ils vont prendre en charge l’importation et exportation des clés de passe (?) en utilisant le nouveau format et protocole de l’alliance FIDO.

// Article en anglais //

#Windows11’s new #passkey design includes cloud syncing and #1Password integration

https://www.theverge.com/2024/10/10/24266780/microsoft-windows-11-passkey-redesign-windows-hello

Ditch Your Current Password Manager, and we’ll give you up to 6 months CREDIT for your remaining bill. https://proton.me/pass/switch #1Password #Lastpass #Dashlane

Swiss-made
Open source
End-to-end encrypted

Happy #WorldPasswordDay!

I've cracked billions of #passwords from tens of thousands of #data #breaches in the past 12+ years, and because of this, I likely know at least one #password for 90% of people on the Internet. And I'm not alone! While I primarily crack breached passwords for research purposes and the thrill of the sport, others are selling your breached passwords to criminals who leverage them in #AccountTakeover and #CredentialStuffing attacks.

How can you keep your accounts safe?

- Use a #PasswordManager! I recommend @bitwarden and @1password

- Use a #Diceware style #passphrase - four or more words selected at random - for passwords you have to commit to memory, like your master password!

- Enable MFA for important online accounts, including cloud-based password managers!

- Harden your master password by tweaking your password manager's KDF settings! For #Bitwarden, use Argon2id with 64MB memory, 3 iterations, 4 parallelism. For #1Password and other PBKDF2 based password managers, set the iteration count to at least 600,000.

- Use unique, randomly generated passwords for all your accounts! Use your password manager to generate random 14-16 character passwords for everything. Modern password cracking is heavily optimized for human-generated passwords, because humans are highly predictable. Randomness defeats this and forces attackers to resort to incremental brute force! There's no trick you can do to make a secure, uncrackable password on your own - your meat glob will only betray you.

- Use an ad blocker like #uBlock Origin to keep you safe from password-stealing #malware and other browser based threats!

- Don't fall for #phishing attacks and other social engineering attacks! Browser-based password managers help defend against phishing attacks because they'll never autofill your passwords on fake login pages. Think before you click, and never give your passwords to anyone, not even if they offer you chocolate or weed.

- #Enterprises: require ad blockers, invest in an enterprise password management solution, audit password manager logs to ensure employes aren't sharing passwords outside the org, implement a Fine Grained Password Policy that requires a minimum of 20 characters to encourage the use of long passphrases, implement a password filter to block commonly used password patterns and compromised passwords, disable #NTLM authentication and disable RC4 for #Kerberos, disable legacy broadcast protocols like LLMNR and NBT-NS, require mandatory #SMB signing, use Group Managed Service Accounts instead of shared passwords, monitor public data breaches for employee credentials, and crack your own passwords to audit the effectiveness of your password policy and user training!