If they realy use that standard and doesn't save backups in plaintext or implement the encryption not wrong.I don't worry about leaks and wish good luck to the hackers to crack the 256 bits encryption without my master password. Last I checked it could take around 1 trillion years
Nice idea but not useful if you want truly random passwords with all kind of letters.An easy thing to do is to remember one complex password and add a combination variable to this password for every website based on their domain name. Voila, you don't need password managers anymore.
Another thing you can do is to create unique passphrases (min 4 words) for every website based on some variable, apparently they are more secure.
Other than that the only advantage I see from a password manager is not to go through the trouble of typing it.
If the password leaks on one website, makes brute force attacks easier on the other domains.Nice idea but not useful if you want truly random passwords with all kind of letters.
Also if you want changing the password, it should be a totally different one instead of only changing some letter's
That's not a good protection.Heh, I try to keep my system as lean and free of programs as possible so I simply use an encrypted Word doc to keep all my passwords.