Comment Re:Seemed pretty obvious this was the case (Score 1) 311
Yes they are a good idea because you have to consider the threat model. If you were say a political target, or perhaps a famous actress you might have people gunning for your directly in which case you might be right it might not be the best idea to have all the goods in one place.
For most of us though the risk is $WEBSITE we used gets hacked and password hashes (you hope they are at least hashed) leak. If you don't have an obscenely long password 15chars+ that is also not a diction word, name of someone or something popular, etc; someone with a couple video cards will very shortly have the clear text brute forced. They will then go about using your set of credentials and all the others they bruteforced on every other major website out there (use a big bank?) to see if they work.
So for most people YES password managers are GOOD because they encourage passwords to be unique, long, and to have good entropy when used on public sites that are targets.
Now a bunch of folks are going to argue that the corpus of password manager software out there frequently suffers from terrible implantation, used unsound cryptographic methods etc. They are right! If you are use one of those that replicates between devices STOP NOW. Use one on your phone or something that you take everywhere. Make SURE IT IS NOT PART OF ANY CLOUD BACKUP/SYNC etc. Make your backups to an SD card or to your PC on your own wireless or via cable.
For attackers to get hold of the data to try and break into it they will now probably have to pop your box, get some malware running etc, at which point they don't need to download the cipher text and try and crack it, they will just wait for you to unlock it and get what they need from the keylogger or screen shots, clipboard etc directly. So while it would be better if you used a sound tool, as long as its not itself malware and phoning your passwords home or something its probably fine. Hell even a password protected excel sheet is probably good enough (but not advised).