On Saturday 28 November 2009 00:43:48 Dale wrote: > chrome://messenger/locale/messengercompose/composeMsgs.properties: > > On Friday 27 November 2009 22:17:15 Dale wrote: > >> If I have a > >> system meltdown and lose my password info stored locally, I can get them > >> back since they are stored on the lostpass server. According to the > >> site, lostpass can not see or even access any password even if I ask for > >> them too. > > > > And if you believe that, I have a nice bridge for sale you might be > > interested in ... > > That is what is on the website. It's not me saying that. Thing is, > there are people in the review section that have done this and they say > it works well. > > I may try this but only none financial things at first.
Of course it works well - you INSERT a password into a database and SELECT it out later when you need it. I'd be surprised if it didn't work. What I find incredible is that people will accept the site's say-so that the site admins can't read the data. They have not proven anything, merely asserted something. The only way to do give that guarantee is to encrypt the data. Which then needs a key. Someone must keep the key and it's either you or them. If it's them, they can decrypt the data (same reason as DRM is doomed to failure) and if it's you - well if you lose the key you lose the data. Are you telling me that there are people gullible enough to actaully fall for that one? -- alan dot mckinnon at gmail dot com
