Hypothesis

6 Matching Annotations

Apr 2025
bitwarden.com bitwarden.com

Bitwarden Security Whitepaper | Bitwarden Help & Support

3
1. nawan 30 Apr 2025
  
  in Public
  
  Finally, a Master Password Hash is generated using PBKDF-SHA256 with a payload of the Master Key and with a salt of the master password. The Master Password Hash is sent to the Bitwarden server upon account creation and login, and used to authenticate the user account.
  
  Bitwarden claim:
  
  Never transmitted over the internet to Bitwarden servers.
  
  This claim is misleading because it implies that master passwords in any form are never transmitted over the Internet to a server, despite the fact that Master Password Hash is basically just master passwords in another form.
  
  Unless Bitwarden implements zero-knowledge password proof, which isn't mentioned in their white paper.
  
  bitwarden password manager
2. nawan 30 Apr 2025
  
  in Public
  
  Never transmitted over the internet to Bitwarden servers.
  
  Is it mean Bitwarden never transmited master passwords or equivalent over the internet?
  
  bitwarden password manager
3. nawan 30 Apr 2025
  
  in Public
  
  Bitwarden never stores and cannot access your master password or your cryptographic keys.
  
  Sound good.
  
  bitwarden password manager open source
Visit annotations in context

Tags

password manager

bitwarden

open source

Annotators

nawan

URL

bitwarden.com/help/bitwarden-security-white-paper/
Mar 2021
bitwarden.com bitwarden.com

Browser Extension Auto-fill Options | Bitwarden Help & Support

1
1. pbk1 03 Mar 2021
  
  in Public
  
  To auto-fill login information, use the following default shortcuts: On Windows: Ctrl + Shift + L
  
  bitwarden shortcut
Visit annotations in context

Tags

shortcut

bitwarden

Annotators

pbk1

URL

bitwarden.com/help/article/auto-fill-browser/
Apr 2020
bitwarden.com bitwarden.com

Open Source Password Manager for Individuals and Teams

1
1. TylerRick 30 Apr 2020
  
  in Public
  
  password manager password manager: Bitwarden open-source software
Visit annotations in context

Tags

password manager: Bitwarden

open-source software

password manager

Annotators

TylerRick

URL

bitwarden.com/
Apr 2019
palant.de palant.de

Should you be concerned about LastPass uploading your passwords to its server?

1
1. pivic 05 Apr 2019
  
  in Public
  
  Oops, I think that one might even be exploitable… I think I’m going to stop here. This needs a structured effort, not spending ten minutes every now and then. As I said, the codebase isn’t bad. But there are obvious issues that shouldn’t have been there. As always, spotting the issues is the easy part – proving that they are exploitable is far harder. I’m not going to spend time on that right now, so let’s just file these under “minor quality issues” rather than “security problems.”
  
  bitwarden security exploit
Visit annotations in context

Tags

security

bitwarden

exploit

Annotators

pivic

URL

palant.de/2019/03/18/should-you-be-concerned-about-lastpass-uploading-your-passwords-to-its-server/

Tags

Annotators

URL

Tags

Annotators

URL

Tags

Annotators

URL

Tags

Annotators

URL