Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3
Mad Scientist
21069 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2163618 19-Jan-2019 11:12
Send private message

how do you remember all the passwords?





Involuntary autocorrect in operation on mobile device. Apologies in advance.


28340 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  # 2163622 19-Jan-2019 11:16
2 people support this post
Send private message

Batman:

how do you remember all the passwords?



Password manager.

 
 
 
 


Mad Scientist
21069 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2163627 19-Jan-2019 11:21
Send private message

Can you recommend a good one for a non power user/casual/easy use?

 

How do i know i can trust the password manager can't be hacked?





Involuntary autocorrect in operation on mobile device. Apologies in advance.


Lock him up!
10788 posts

Uber Geek

Lifetime subscriber

  # 2163630 19-Jan-2019 11:28
One person supports this post
Send private message

I have always been afraid of password managers because what happens if I lose access to that? It's not that I don't trust them, but I don't trust myself. I forget things and confuse things sometimes. I keep a few passwords that are burned into my memory. For important things, like GZ and my main email account, I use unique passwords. My finances are very simple so I don't do any financial transactions on-line. I reuse passwords for unimportant accounts, like logins to free services. I only use a debit card for purchases and I control the amount that is on it. So far I have never had an issue.

 

I know that not everyone can live this way, but I am retired and my needs are simple so it works well for me.

 

 





I don't think there is ever a bad time to talk about how absurd war is, how old men make decisions and young people die. - George Clooney
 


4163 posts

Uber Geek

Subscriber

  # 2163698 19-Jan-2019 13:25
Send private message

Heaps of threads on password managers, so suggest a search will reveal these!

I’ve been using LastPass for years now; while I used to pay the annual sub, the free version works without any issue including on mobile devices (this used to be an option only for the paid version).

There’s now full integration into IOS as well, which is fantastic; until around the middle of last year it was a total dog to use on my iPad.

Whichever password manager you select make sure you enable 2FA on that, plus of course choose a comprehensive master password!

8906 posts

Uber Geek

Lifetime subscriber

  # 2163745 19-Jan-2019 15:39
Send private message

Rikkitic:

 

I have always been afraid of password managers because what happens if I lose access to that? It's not that I don't trust them, but I don't trust myself. I forget things and confuse things sometimes. I keep a few passwords that are burned into my memory. For important things, like GZ and my main email account, I use unique passwords. My finances are very simple so I don't do any financial transactions on-line. I reuse passwords for unimportant accounts, like logins to free services. I only use a debit card for purchases and I control the amount that is on it. So far I have never had an issue.

 

I know that not everyone can live this way, but I am retired and my needs are simple so it works well for me.

 

 

 

 

you keep the master password in a safe place, bottom of a filing cabinet or something, and you allow emergency access to a friend/family to your account. im not sure how you would loose access to it though? you also enable multi factor authentication on the account. you can also enable trusted devices so no one else can login from anywhere else.

 

https://www.lastpass.com/how-lastpass-works

 

"When your trusted contact requests emergency access to your vault, they will have to wait for the period of time you specify before being allowed access. During that time window, you can decline their request to access your vault."

 

i use last pass, and i only have to remember one password, its 20 characters long, but its only one i have to remember, all the rest of my passwords are 12 digit, alphanumeric with symbols.


623 posts

Ultimate Geek


  # 2163755 19-Jan-2019 16:11
One person supports this post
Send private message

Have looked at Lastpass, but have a few of questions;

 

Q1 - Does Lastpass violate your bank terms by entering your password on a third party site?  Banks don't approve POLi.

 

Q2  - Does Lastpass have to be installed on the device being used?

 

Q3 - What do you do when away from home?


 
 
 
 


1374 posts

Uber Geek


  # 2163772 19-Jan-2019 17:01
Send private message

1. Do't use Orcon email.

 

2. Change your email passwords to be safe.

 

3. Use MFA.

 

4. Use a password manager such as Last Pass.

 

5. Don't email your naughty pics develop them at your local photo developer and post them instead.


BDFL - Memuneh
64775 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2163773 19-Jan-2019 17:03
Send private message

@quickymart:

 

She is worried that they may have hacked her phone. She doesn't use her laptop as it doesn't work properly - they wouldn't have had access to her phone, surely? Even if she (accidentally) went to a dodgy site on her phone it wouldn't work would it?
She has had all her e-mail stored in Orcon's webmail and I am getting her to remove it as I write this but the hacker wouldn't use it would they?

 

 

Tell your wife to stop worrying. Tell her to change password on email. Tell her this sender probably found her password on one one many lists from sites that had been hacked before. The scammer doesn't want to access anything, only to have her believe they can.

 

Tell your wife to not use the same password everywhere - if the password matches her own email password chances are she re-used it somewhere else.

 

I wise I could lock this thread now with this definitive answer but I will leave it.





8906 posts

Uber Geek

Lifetime subscriber

  # 2163776 19-Jan-2019 17:10
Send private message

k1w1k1d:

 

Have looked at Lastpass, but have a few of questions;

 

Q1 - Does Lastpass violate your bank terms by entering your password on a third party site?  Banks don't approve POLi.

 

Q2  - Does Lastpass have to be installed on the device being used?

 

Q3 - What do you do when away from home?

 

 

Q2. no, i use it at work and open my passwords on my phone and type them in on my work PC. i can also use it offline so it doesnt require an internet connection to access the passwords.

 

Q3. see above, + you can open the lastpass website from anywhere to access things.


3375 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2163778 19-Jan-2019 17:16
Send private message

Another good password manager is enpass.
They don't store your password on their systems. You save your encrypted database to the cloud service you pick (I use a free Dropbox account with 2FA on the account). The enpass app then syncs to Dropbox and to all your other devices. Windows version is free, if you want it on iOS or Android you pay once for the app.

548 posts

Ultimate Geek

Lifetime subscriber

  # 2163781 19-Jan-2019 17:20
Send private message

I recommend Bitwarden. They have apps for iOS/Android (having an iPhone I can vouch for its excellent iOS integration, many iOS apps can request passwords directly from BitWarden making life easy) and plugins for Firefox/Safari/Edge/etc (allowing autofill with a mouse click and certain browsers e.g. Firefox also support saving your password after you login). Cloud sync so it syncs across devices/browsers. It comes with a password generator built-in so you can just press the generate button and it generates a unique password for you. It's also open source, if that ticks a box for you.


532 posts

Ultimate Geek

Trusted

  # 2163786 19-Jan-2019 18:02
One person supports this post
Send private message

https://keepass.info/


5496 posts

Uber Geek

Trusted
Lifetime subscriber

  # 2163790 19-Jan-2019 18:30
One person supports this post
Send private message

Keepass is great

John

1030 posts

Uber Geek

Trusted

  # 2163810 19-Jan-2019 19:59
Send private message

I'll add some technical info to help relax your wife.

 

 

 

@quickymart: Morning,My wife received an e-mail this morning from her (Orcon) address to her Orcon address ...

 

In an email, the senders info is composed of two parts.

 

  • The actual email address
  • The display name
To see both parts, you want to "view details" or "show original". There you will see that the senders email is actually something different, they just made the display part look like your wifes email address. It was not really "from her email"

 

 

 

... The message included her password,which is what (she is) concerned about ...

 

As per other posts above, most likely from other breaches, check all your email addresses on haveibeenpwned.com

 

 

 

... he will send every picture she has ever taken

 

Lucky her. Most of these emails threaten to release the "naughty" stuff.

 

 

 

... (he says he logged into her phone to do this) ... - but could this happen? ...

 

Yes, it's possible because every OS has vulnerabilities. It is most unlikely though.

 

 

 

 

 

... Thing is, her phone has security on ...

 

What type of security? A 4 digit pin that only takes a 1000 guesses to crack? A drawn pattern that is displayed; i.e. easy for me to shoulder surf or any shop surveillance camera to pick up while you stand at the till & unlock your phone to pay. What about a firewall? Remember, you phone has a connection to the internet 24/7.

 

 

 

As I've told my wife who originally did not want to do internet banking: If there is somebody out there to get you, they will get you. It is unlikely you are singled out like that & if things go wrong, you will be one of thousands with the same problem. Yes, I know if you are the one going through this, it is not nice, to say the least, but the reality still is that the corps will have to manage this on a bigger scale than just you.

 

 

 

Her main concern is she stored all of her e-mail in that mailbox and the hacker would have had access to it as well as all of her contacts.

 

  • Yes, your wife should be concerned if this is her current password used for this or any other service. Somebody out there will try this email/password combination sooner or later on various systems
  • No, no need to be concerned. Like SPAM & junk mail, these types of emails get sent out by the millions. The sender is hoping for a 0.0000x hit rate. Generally, they'll make enough money from that percentage.
  • No, no need to be concerned. Logging into millions of email accounts, collecting addresses, viewing 9.9999E+99 mind numbingly bland sunsets, cat photos, blurred whatevers etc is going to take effort. The scammers will want to move on to something a lot easier.
 

 

...  (but I don't see how they could have backed into her cellphone anyway) ...

 

See https://en.wikipedia.org/wiki/ICloud_leaks_of_celebrity_photos

 

 

 

@k1w1k1d

 

Q1 - Does Lastpass violate your bank terms ...

 

Q2  - Does Lastpass have to be installed on the device being used?

 

Q3 - What do you do when away from home?

 

     

  1. No. It is akin to a copy of paste from your "secure store" into the user/pwd field of the web/app. POLi & Pocketsmith store your credentials on their system & log into internet banking on your behalf with those stored credentials. Generally, no interaction from you required.
  2. No, but it does make it a lot easier. Especially if you don't want to type password that are 49 - 120 characters long.
  3. Use the app on your phone to view the password or only if you really, realy have to, temporarily start an incognito brwoser session on the untrusted device.

 

 





Please keep this GZ community vibrant by contributing in a constructive & respectful manner.


1 | 2 | 3
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Spark launches new wireless broadband "Unplan Metro"
Posted 11-Nov-2019 08:19


Malwarebytes overhauls flagship product with new UI, faster engine and lighter footprint
Posted 6-Nov-2019 11:48


CarbonClick launches into Digital Marketplaces
Posted 6-Nov-2019 11:42


Kordia offers Microsoft Azure Peering Service
Posted 6-Nov-2019 11:41


Spark 5G live on Auckland Harbour for Emirates Team New Zealand
Posted 4-Nov-2019 17:30


BNZ and Vodafone partner to boost NZ Tech for SME
Posted 31-Oct-2019 17:14


Nokia 7.2 available in New Zealand
Posted 31-Oct-2019 16:24


2talk launches Microsoft Teams Direct Routing product
Posted 29-Oct-2019 10:35


New Breast Cancer Foundation app puts power in Kiwi women's hands
Posted 25-Oct-2019 16:13


OPPO Reno2 Series lands, alongside hybrid noise-cancelling Wireless Headphones
Posted 24-Oct-2019 15:32


Waikato Data Scientists awarded $13 million from the Government
Posted 24-Oct-2019 15:27


D-Link launches Wave 2 Unified Access Points
Posted 24-Oct-2019 15:07


LG Electronics begins distributing the G8X THINQ
Posted 24-Oct-2019 10:58


Arlo unveils its first video doorbell
Posted 21-Oct-2019 08:27


New Zealand students shortlisted for James Dyson Award
Posted 21-Oct-2019 08:18



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.