← Back to context

Comment by buckle8017

1 day ago

Lots of people are afraid of attacks on the browser extension.

There have been exploits for them in the past, it's a legitimate concern.

Deciding between the two setups is a tradeoff between one security issue and another.

3 comments

buckle8017

Reply
asimovDev  1 day ago

I am now wondering if Safari's integration with the system-wide password manager is similar to having a 1Password browser extension installed in a chromium browser

  • buckle8017  15 hours ago

    It's probably slightly more secure than the extension.

    Legitimately the only reason to us the built in password managers is this tradeoff.

akimbostrawman  1 day ago

>afraid of attacks on the browser extension

Which is a legitimate concern since they are a gaping hole in security and isolation. Visiting website should be treated like phone calls from the bank. If you get called/mailed you don't follow the information there but call back / visit the site yourself e.g. from bookmarks or copy url from pw manager.