Discussion
Whats the best of way of storing/remembering the hundreds of passwords I use to log in to all the various websites that now demand it? I've currently got a notebook, but it is getting overly complicated as more sites demand different "specs" of password (must be 10 letters, with one number, no double letters, two non-adjacent capitals, etc etc)
A password manager.
Can either be a hosted (cloud) service like LastPass or Dashlane or something you manage yourself like KeePass
Some of the hosted providers offer a free service. The paid services will offer additional functionality and support for things like 2FA (Two Factor Authentication).
https://helpdesk.lastpass.com/lastpass-now-free-on...
Either way, you generate a random password every website, store them in the manager and then secure overall access via a longer password (or token) and, ideally, 2FA.
https://helpdesk.lastpass.com/multifactor-authenti...
Can either be a hosted (cloud) service like LastPass or Dashlane or something you manage yourself like KeePass
Some of the hosted providers offer a free service. The paid services will offer additional functionality and support for things like 2FA (Two Factor Authentication).
https://helpdesk.lastpass.com/lastpass-now-free-on...
Either way, you generate a random password every website, store them in the manager and then secure overall access via a longer password (or token) and, ideally, 2FA.
https://helpdesk.lastpass.com/multifactor-authenti...
boyse7en said:
Thanks for the recommendations.
If i store the passwords in the cloud/online isn't there a danger that hackers could just hack that one password and get access to all my other passwords in one go?
Though I am not familiar with all solutions, for those that I am the cloud files are encrypted, so pretty safe. The de-cryption of the file takes place on your device.If i store the passwords in the cloud/online isn't there a danger that hackers could just hack that one password and get access to all my other passwords in one go?
Here is a great opinion piece that is worth the read: https://www.troyhunt.com/password-managers-dont-ha...
I think for a lot of accounts it's probably just worth having the same generic password for them all.
For example for all forums/account without any financial/personal/address information just used Password123!
Who cares if someone hacks your Pistonheads account?
But for email, banking, Amazon/eBay/etc they should all be unique!
For example for all forums/account without any financial/personal/address information just used Password123!
Who cares if someone hacks your Pistonheads account?
But for email, banking, Amazon/eBay/etc they should all be unique!
I use KeePass with the Google Drive cloud backup plugin. I've now got hundreds of randomly generated passwords for various websites, just make sure you have multiple copies of the database. I also use this Android app to access it on the move: https://play.google.com/store/apps/details?id=keep...
Australiam said:
Though I am not familiar with all solutions, for those that I am the cloud files are encrypted, so pretty safe. The de-cryption of the file takes place on your device.
Here is a great opinion piece that is worth the read: https://www.troyhunt.com/password-managers-dont-ha...
I'd go with that and it nicely illustrates the point.Here is a great opinion piece that is worth the read: https://www.troyhunt.com/password-managers-dont-ha...
He uses 1Password.
Oakey said:
I use Keeper Security and the browser extensions, don't know how reputable they are?
Keeper isn't all that widely mentioned and used in my experience.Did you install it because it was in the Windows 10 app store by any chance?
https://arstechnica.com/information-technology/201...
juice said:
LastPass have been repeatedly hacked (in 15, 16 and 17).....or 'Patched vulnerabilities' in polite speak 
Mind you....Should come as no massive surprise that a cloud offering, storing the keys to peoples applications should come under repeated hacking attempts !
Do you mean hacked as in "attacked & user passwords stolen" or "examined, vulnerbities found & patched"? Can you point to reliable reports of users encrypted passwords being taken?Mind you....Should come as no massive surprise that a cloud offering, storing the keys to peoples applications should come under repeated hacking attempts !
I like 1Password as I can choose where to store the database. I use two vaults - one for personal and the other for work on two separate locations that both have two factor authentication enabled.
I notice that most of the popular password managers are adopting a subscription model now. Not so sure about that.
I notice that most of the popular password managers are adopting a subscription model now. Not so sure about that.
Lazlock is portable and will work on a Linux or glass machine
https://sourceforge.net/projects/lazlock/
https://sourceforge.net/projects/lazlock/
Can I ask how safe Google Chrome is? I mean it remembers all my passwords and I seem to be able to 'log in' to any computer in the world and retrieve saved passwords for websites?
I don't really use it for many sites, but it seems to work perfectly well for those that it does (i.e. PH's)
I don't really use it for many sites, but it seems to work perfectly well for those that it does (i.e. PH's)
Gassing Station | Computers, Gadgets & Stuff | Top of Page | What's New | My Stuff