The Green Meanie? No, the magazine is in front of the trigger.

This is a technical and if you disagree you’re wrong.

At the very least, can they not be blue? It’s the worst color at night.

Red would be best–it fucks with your eyes the least–but there’s often legal limits on red lights (besides brake/turn signals) on non-emergency vehicles. Something in orange or yellow would be less harsh.

Did it ever occur to you to watch the video? Even the first time was a very deliberate movement, and the second time should remove any doubt.

It’s generally one piece of software, a browser extension, that works for all. Even mobile apps are often just webpages with extra steps, so the code base is the same.

The underlying storage must be encrypted the same way on each.

Yes, there are still potentially issues. I’ll come back to what I said at the start: passwords are a bad system in general, all methods for handling them are flawed, but password managers have the fewest flaws.

Quite a few. Data dumps of passwords from sites can be from sites that used full hashing. If you used a fully random password of at least 20 characters, even unsalted md5 storage would be unbreakable.

What an idiotic argument, the level of entropy comes from the rules first and foremost, putting a 1 and an A together is the exact same entropy as using 2 and B.

Oh dear, no. You cannot match a cryptographic (P)RNG for generating passwords. Not even close.

Yeah, that’s going to be a terrible system. The human brain isn’t capable of keeping track of enough entropy to create a secure password system.

More generally, it’s a big red flag when anybody thinks they can make a better system than publicly available and verified systems. You’re not capable of that, I’m not capable of that, Bruce Schneier is not capable of that. No matter how smart you are, you missed something. That’s why I didn’t need to know a single detail.

My personal system has guaranteed no vulnerabilities

If you think that’s true, then you don’t have the experience to make a secure system.

Passwords suck as an authentication system in general. Your own system is probably worse than what password managers do. Yes, there are problems, but so does every other solution to this, and password managers win out in the comparison.

State actors don’t generally need to break passwords. They ask the company “nicely” and they get what they want. The exception would be if that password is being used to encrypt data.