Debian Sid No-Feature KeePassXC Package. \ stacker news ~security

Debian Sid No-Feature KeePassXC Package.github.com/keepassxreboot/keepassxc/issues/10725

478 sats \ 7 comments \ @nikotsla 11 May security

What do you think? Less features, less attack surface. End-user will be mad and lost?

106 sats \ 2 replies \ @ek 11 May freebie

I think it would have been better if the new version with less features was packaged separately as keepassxc-minimal as was raised in the discussion and not as a "rugpull" by replacing the existing keepassxc package.

Security needs to work with user interests in mind, not against them.

11 sats \ 0 replies \ @nikotsla OP 11 May

It's a valid point, I am 50/50 here, it will be valid to offer keepassxc-full and offer by default the most secure version.

0 sats \ 0 replies \ @stackeraw 11 May

I agree

15 sats \ 0 replies \ @freetx 11 May

Another alternative is to use the flatpak version of keepassxc, then use Flatseal (the flatpak permission manager) to reduce what permissions it has (ie. remove network, assign only specific directory access, etc)

11 sats \ 2 replies \ @1GLENCoop 11 May

I love and trust KeePassXC.

I never got any of the browser integrations to work, no matter what I tried. Finally I gave up trying and learned to love the separation since it brings more peace of mind, less attack vectors.

5 sats \ 0 replies \ @xz 11 May

Same same.

5 sats \ 0 replies \ @nikotsla OP 11 May

I am at the same side of the camp :)