I would opt to an offline a la KeePass anytime. Even if the online service saves the data encrypted, and decrypts in your browser, and you verify that is the case, you have no guarantee that they won't change that, and then you're kinda screwed.
Hi, there, just got my PA tetra (together with some of your other products, which are awesome!), and is fiddling around with it. SSLsplit is working like a charm, execept that the CA cert is using SHA-1 hashing. Is it possible to have the module generate certs with stronger hashing (maybe by updating openssl and the cert generation script ?) Thanks in advance.