I have a few questions concerning data visibility. I am wondering about what a bad guy could see even without the master password.
1) It is my understanding that password strength is no longer stored in the clear but is now encrypted. My keychain is a couple years old. Were the strengths automatically encrypted or do older keychains still have strength information stored in plain text? I am running v3.8.20 on my mac.
2) Is there any information, other than titles and URLs that are stored in plain text?
3) How do smart folders appear in the keychain and in iOS apps? Are the names of the smart folders, search criteria, or cards that matched the criteria visible? For example, if I create a smart folder titled "sites that use password abc", where abc is the actual password being searched for, will a bad guy be able to see that I use "abc" or what sites the search matched with?