3 upvotes, 1 direct replies (showing 1)
View submission: How to keep your Reddit account safe
It's in plaintext on your screen, generated by code running on a server and being set to you over (admittedly encrypted) internet.
That's ignoring the issue of trust, which SHOULD concern you.
Comment by IanPPK at 06/05/2019 at 20:54 UTC
1 upvotes, 0 direct replies
It could be run on client side JavaScript using your systems pseudorandom generator, but there's definitely better options. At the end of the day, if the endpoint machine is compromised, anything on-screen should be considered up for grabs.