Hello guest, if you read this it means you are not registered. Click here to register in a few simple steps, you will enjoy all features of our Forum.
Rules have been updated! Here

Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5

password security

Password security
Have used KeePass before, it does seem to be pretty secure. For me personally though, I am not very comfortable in storing all of one's passwords in a certain location. It is a hazard at some point in time.
I used to use KeePass, but quit that and then used notepad and then quit that and used paper, but I switched to LastPass since 3 years ago. I didn't know it had so many vulnerabilities though. Oh well.
I installed LastPass as a test and found it so convenient that I couldn't let it go.
But I write important information in Notepad and put it in an encrypted folder.
i've never liked or used password managers but i'll try this one cause it looks so much better and easier to manage than a notepad lol
I moved over to Bitwarden it even has multi device support that you don't have to pay for. So you can access you vault on your phone or laptops.
(06-09-2021, 05:28 PM)NikKlaus Wrote: I moved over to Bitwarden it even has multi device support that you don't have to pay for. So you can access you vault on your phone or laptops.
Coded the link, please code any external links

[-] The following 3 users say Thank You to BALTAGY for this post:
  • NikKlaus, Skunk1966, UpGrade
I use LastPass very good no problem.
i use Bitwarden 
Because can self host~
(01-06-2020, 04:27 PM)ntdll Wrote: Password managers are important to me. Fundamentally, if you don't know your own passwords, how is someone else going to retrieve them when you dump your authentication?

Word documents, text files and using of the same password in multiple places is entirely non-secure. You may as well buy Zuckerberg some printed fridge magnets with your email accounts, bank details and social security number.

There are billions of pre-cracked and ready hashed passwords out there, so high entropy is your goal. But how is one supposed to know their 16-256 length extended ascii passwords? You're not, which brings me to KeePassXC; which is a FOSS and cross-platform password manager, and the only one I trust. I know there are more out there but I wouldn't trust 1Password, Lastpass and the likes, hence allocating one in particular.

KeePassXC comprises of:

AES (Rijndael) encrypted databases using a 256bit key

Compatible with KeePass password safe
Cross-platform, open source (FOSS) and works offline

Holds anything from passwords, to 2FA/MFA recovery keys

Supports custom URL icons
Supports YubiKey for authentication challenge-response

High *entropy* password creator
Automatic clearing of the clipboard and memory space after a password copy

Using a password manager with a strong master-key is how you should be rolling in 2020. A post-it note on your computer monitor does not cut it anymore, in fact it never did. But reverse-engineering tactics, spying and malware are only getting more sophisticated. Do yourself a favor, enhance your privacy by protecting your passwords.

* Entropy in this context means the strength of a password via information theory.
this good web for us to know more abaout cyber security
Actually it is better to remember you passwords by heart, but not password managers. Nor random passwords. So I usually create a password like [username]@[websitename]+[some fixed characters that is same for every password].

It is like a function pwd(x)=u(x)+w(x)+c

I may not use any password managers this way. 
Without using a password manager, there is basically no one who can find out this pwd(x) and crack your password

Forum Jump:

Users browsing this thread: 1 Guest(s)