Yeah, I also agree with you as it basically mirrors my thoughts as while I don't know all of the details, password managers are meant to be more secure in this regard. so while I am not a expert, I am sure the experts in the encryption field would likely agree on this basic point.Rubin_Farr wrote: ⤴Wed May 05, 2021 2:30 am I would not consider encrypted .zip files as good enough for password storage. I wish I knew enough about it to give a nice detailed response but suffice it to say, Winzip/.zip files, etc. are not designed as security products and its encryption isn't implemented as such. Encrypted .zip files are rather famously easy to bypass so please do your research first if you plan to trust this method.
but with that said... depending on what security threats one is concerned with, assuming the passwords they are using are secure, as long as their computer does not get compromised, then even in regards to what you mention won't matter much (like even sort of a worst case in this regard... if passwords were stored in a basic text file on a computer it won't matter unless that computer was stolen etc). besides, I figure if ones computer gets compromised with malware (and the like), at this point they got bigger things to worry about since their computer is compromised and the only way I would trust using that computer again is to do a proper clean install (i.e. completely remove all data and install the OS from scratch).
Even in regards to VeraCrypt, while people seem to think that's a solid encryption program, it's basically putting more work on oneself to use stuff like that vs just a standard password manager. unless of course you don't trust the password manager at which point I would just switch to one you do trust a bit more etc. VeraCrypt can be nice but for general password management, a standard password manager is just the all-around better choice.
like even if we assume both VeraCrypt and a Password Manager are secure, it don't make much sense to use VeraCrypt for password storage as it's easier/more practical to use a password manager for password management since it's designed for it where as VeraCrypt is more of a general data encryption kind of program.