Techly NewsGet the app

Get the latest tech news

The KeePassXC Kerfuffle


KeePassXC is an open-source (GPLv3), cross-platform password manager with local-only data storage. The project comes with a number of build options that can be used to toggle optional features, such as browser integration and password database sharing. However, controversy ensued when Debian Developer Julian Klode decided to make use of these compile flags to disable these features to improve security in the keepassxc package uploaded to Debian unstable for the upcoming Debian 13 ("Trixie") release.

This meant that the new package no longer supported any features, like browser integration or password sharing, that depended on networking or communicating with processes like Firefox or USB input from hardware tokens. The hasty reply ended up sparking a disproportionate backlash: " I don't think it's healthy for people being subjected to a hate mob on multiple channels for several days like this." Silvetti disagreed and asserted that disabling compile-time flags for additional features " actually removes code and reduce[s] attack surface", making the final version more secure.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of KeePassXC Kerfuffle

KeePassXC Kerfuffle

« I run a software book club
ChatGPT: Everything you need to know about the AI-powered chatbot »