It seems to me (hence this question), that storing all your passwords online and accessing them with a single “unlock” password would be extremely dangerous. If the locker service is itself hacked, then the hackers will have ALL your passwords for the price of getting one password.
In: Technology
What if instead of trusting them 100% you only trusted a little bit?
When signing up for an account you have the password manager generate something random but before you submit it you add a word to the end of it that only you know.
***(Random password) + (salt) = real password***
***(7WFdzDPgA6W2zmo7NR) + (bacon) = 7WFdzDPgA6W2zmo7NRbacon***
Then when you store the password in your password manager you leave out the salt. Even if the password manager is hacked they only see (7WFdzDPgA6W2zmo7NR) which is not the real password. When you log in you let the password manager autofill what it has and you add the salt before pressing log in.
I wouldn’t do this for all the passwords, just the important ones. There is no excuse to not use a password manager if you [salt the important ones](https://passwordbits.com/salting-passwords/).
Latest Answers