- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
re: Anyone using a password manager?
Posted on 9/23/24 at 7:01 pm to kywildcatfanone
Posted on 9/23/24 at 7:01 pm to kywildcatfanone
quote:
What format? I keep an excel sheer that is password protected and keep it on a flash drive.
I wouldn’t trust Excel password locks for a password list. You can format a flash drive as a Bitlocker drive. Thats what I do. As long as your Windows OS is Bitlocker enabled you can open it. And always choose a strong password with a mix of alphanumerics and symbols. There are no lockdowns that are foolproof, but bitlocker on a portable device is pretty good.
0
Posted on 9/23/24 at 8:26 pm to kywildcatfanone
quote:
I keep an excel sheer that is password protected and keep it on a flash drive.
Man people will use Excel for any and everything huh
Posted on 9/24/24 at 12:18 am to kywildcatfanone
I have 1291 unique entries in my BitWarden vault. If you *can* use a spreadsheet to keep track of passwords, your passwords aren't unique enough. Besides, you need something to generate a key for MFA anyway.
Posted on 9/24/24 at 8:09 am to LemmyLives
Self hosted Bit-Warden...
(Cloud hosted is asking for your data to be compromised, and it will be!)
(Cloud hosted is asking for your data to be compromised, and it will be!)
Posted on 9/24/24 at 8:22 am to Ricardo
quote:
With as cheap as usb thumb drives are now, there’s no reason not to have a safe and just chuck 1 in there every year.
Never know when it will save your butt.
How does a USB drive provide password security?
Posted on 9/24/24 at 8:44 am to notsince98
It was in reference to concerns about backups in case of a local server crash.
With how cheap storage technology is, there’s no reason not to have regular backups.
With how cheap storage technology is, there’s no reason not to have regular backups.
Posted on 9/24/24 at 10:00 am to LanierSpots
I use 1password. I've never used anything else, but I don't have any complaints with 1password. One of the benefits to me besides basic password management is that my wife knows how to use it, so I don't worry about something happening to me and her not being able to easily get into things.
I also add MFA to anything that allows it, typically via Microsoft Authenticator.
I also add MFA to anything that allows it, typically via Microsoft Authenticator.
Posted on 9/24/24 at 10:08 am to Ricardo
quote:
It was in reference to concerns about backups in case of a local server crash.
With how cheap storage technology is, there’s no reason not to have regular backups.
But the line of discussion was about not using services due to security breach issues and instead use an encrypted USB drive to store passwords. This makes no sense to me. I dont see how it provides any additional security.
Posted on 9/24/24 at 10:19 am to notsince98
Because it's not hackable unless someone steals your USB drive or hacks your particular PC. The "fear" is that a central database that stores passwords can (and will) be hacked. Therefore, keeping passwords local on encrypted devices is more safe. The question was, "do you have a backup"? My comment was that as cheap as thumb drives have become it makes sense to buy several of them and just backup the data every so often and keep it in a safe. These files are not that large.
Posted on 9/24/24 at 12:18 pm to Ricardo
quote:
Because it's not hackable unless someone steals your USB drive or hacks your particular PC. The "fear" is that a central database that stores passwords can (and will) be hacked. Therefore, keeping passwords local on encrypted devices is more safe. The question was, "do you have a backup"? My comment was that as cheap as thumb drives have become it makes sense to buy several of them and just backup the data every so often and keep it in a safe. These files are not that large.
That still isn't providing additional security. The passwords are still out there on the net every time you use them and for every account you have they are stored on the servers. That is where the VAST majority of compromise comes from. Relying on a USB stick is a great way to just lose all your passwords at once.
I'm all for additional safety measures but USB stick password storage makes zero sense.
Posted on 9/24/24 at 1:17 pm to notsince98
Sure it is.
There’s no dispute that an individual site can get hacked. The difference is that you’re only getting one password hacked vs all of them being on a password database.
The point was that you don’t keep your passwords on the cloud.
There’s no dispute that an individual site can get hacked. The difference is that you’re only getting one password hacked vs all of them being on a password database.
The point was that you don’t keep your passwords on the cloud.
Posted on 9/24/24 at 3:54 pm to Slingscode
1Password
Worth every penny.
Worth every penny.
This post was edited on 9/24/24 at 3:56 pm
Posted on 9/24/24 at 3:55 pm to BottomlandBrew
quote:
One of the benefits to me besides basic password management is that my wife knows how to use
this is the way.
Posted on 9/24/24 at 5:59 pm to LanierSpots
1Password
Posted on 9/25/24 at 8:23 am to mdomingue
I think I'm going to do one of these, will make it easier on the wife too trying to remember passwords.
One question, when you start with a password manager, how does it interact with existing passwords on websites you already have setup. So for example, you have a login to Amazon already, does the password manager let you add amazon, and then it updates your password automatically to their secure format, or do you have to manually update each one you have?
One question, when you start with a password manager, how does it interact with existing passwords on websites you already have setup. So for example, you have a login to Amazon already, does the password manager let you add amazon, and then it updates your password automatically to their secure format, or do you have to manually update each one you have?
Posted on 9/25/24 at 8:47 am to kywildcatfanone
quote:
One question, when you start with a password manager, how does it interact with existing passwords on websites you already have setup. So for example, you have a login to Amazon already, does the password manager let you add amazon, and then it updates your password automatically to their secure format, or do you have to manually update each one you have?
I haven't tried this, but it looks like Bitwarden can import credentials that you have stored via your browser.
Import from Firefox
This post was edited on 9/25/24 at 8:48 am
Posted on 9/25/24 at 9:10 am to BottomlandBrew
quote:
I use 1password. I've never used anything else, but I don't have any complaints with 1password.
This is how I've felt about LastPass, but every time I click on one of these threads, I feel like I chose poorly
quote:
One of the benefits to me besides basic password management is that my wife knows how to use it, so I don't worry about something happening to me and her not being able to easily get into things.
Been trying for a while to get my wife onboard, but when it comes to technology, she would rather just burry her head in the sand until she's forced to use it. Funny thing is one of her concerns about a password manager site is if someone hacks them, they will have all of her passwords. So, she stores them in her google contacts list (not the exact password, she at least uses a code system) and uses basically the same password across multiple platforms
Posted on 9/25/24 at 10:25 am to LanierSpots
Dashlane
Posted on 9/25/24 at 10:26 am to kywildcatfanone
If my memory serves me correctly, you will get an option to select which password you want use and 1password will ask if you want to add the login credentials you just used. Occasionally you may need to manually update. There are also import/export utilities but not sure the formatting.
Posted on 9/25/24 at 12:06 pm to Weekend Warrior79
quote:Problem here is a lot of people don't feel "forced" to use a password manager until something bad happens.
Been trying for a while to get my wife onboard, but when it comes to technology, she would rather just burry her head in the sand until she's forced to use it.
quote:Much, much, MUCH more likely to have passwords stolen from your contacts app than from a password manager site, especially if the contacts are synced across devices (so they are stored in the cloud possibly in plaintext). How many apps have permissions to access contacts on her phone? Probably a lot.
Funny thing is one of her concerns about a password manager site is if someone hacks them, they will have all of her passwords. So, she stores them in her google contacts list
quote:That just makes it impossible to autofill passwords, which is a necessity if you're using secure passwords.
not the exact password, she at least uses a code system
quote:Well frick.
and uses basically the same password across multiple platforms
It's good that she has concerns about password security, but her methods are all the exact wrong things to do if you want to secure your passwords. Convince her with this:
1. If a password site is hacked, the attacker does not automatically have your passwords. They will have an encrypted file which contains your passwords, and then they have to crack your master password to access your passwords. Choose a strong password for this, and if there is ever a breach you will have time to change your passwords.
2. Most password managers support multi-factor authentication. This means that not only does an attacker have to hack the password site and then crack your master password, they would ALSO need access to your physical phone in order to reveal your passwords. The Google Contacts app doesn't do this for you.
3. Having a personal code system to obfuscate your passwords is handy if you're writing them down somewhere, but if you use truly secure passwords (like those a password manager will generate for you) then a code system won't be helpful. Further, typing out secure passwords is a huge pain in the arse, so a password manager will help you out here.
4. Using the same password across multiple sites is the absolute worst thing you can do for security. If you worry about one site getting hacked and having your passwords stolen, repeating passwords multiplies the attack surface. Instead of just one site, now you have potentially dozens of sites to be hacked which would expose your password for all the rest.
Page 2 of 3
Popular
Back to top
Follow TigerDroppings for LSU Football News