Originally Posted by
BonzoESC
That's not doubly vulnerable; lastpass sends your computer the same stuff 1password or keepass would store locally, and there's nothing stopping an attacker who gets access to that information from storing it for an offline attack (which would still take thousands of years).
Really, any password manager that allows you to use long and difficult passwords without the fallibility of human memory and randomization is fine. If somebody really wants to get you, they'll always be able to use rubber-hose cryptanalysis, and anybody who wants to just do wanton damage will find other peoples' crappy passwords first.
Not only that, if LastPass was free and open source maybe I'd consider it. The fact I have to PAY money to have a private closed source program to store my most sensitive data - no thanks.
Open Source + Free is always best for personal security solutions, unless I'm the developer that developed the program myself and charge people to use it, with my closed source program code.