Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsDesktop computingPassword management
DamageInc

555 posts

Ultimate Geek
+1 received by user: 73

Lifetime subscriber

#237759 17-Jun-2018 09:25
Send private message

Good morning,

 

What are your thoughts on password management?

 

Single password for all sites vs a random password for every login?

 

Password manager - yes or no?

 

Password manager vs browser based password management?

 

Have a great day




Pop! OS

Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4
marpada
487 posts

Ultimate Geek
+1 received by user: 182


  #2038980 17-Jun-2018 09:35
Send private message

I don't see any reason for not using a password manager and long random unique passwords.



freitasm
BDFL - Memuneh
80658 posts

Uber Geek
+1 received by user: 41071

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2038982 17-Jun-2018 09:41
Send private message

You should never, ever use a single password for all sites. There's a thing called credential stuff, where bots will be used to try leaked email/passwords in other websites - and the chance of this hitting gold is pretty high if you reuse passwords.

 

Yes to password managers, not browsers. If using password managers then try using long passwords generated by the app. Use 2FA wherever available. Authy for 2FA since it synchronises between desktop and mobile devices so if you reset your smartphone you're not locked out of services.

 

Visit https://haveibeenpwned.com/ to check if your email's leaked and https://haveibeenpwned.com/Passwords to check if your password has leaked. 




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

Linux
12188 posts

Uber Geek
+1 received by user: 8480

Trusted
Lifetime subscriber

  #2038983 17-Jun-2018 09:44
Send private message

Password manager for sure

John



DamageInc

555 posts

Ultimate Geek
+1 received by user: 73

Lifetime subscriber

  #2038988 17-Jun-2018 10:11
Send private message

freitasm:

 

Visit https://haveibeenpwned.com/ to check if your email's leaked and https://haveibeenpwned.com/Passwords to check if your password has leaked. 

 

 

Dam not a good result visiting the above links.

 

Do you use Authy as well as a password manager or just Authy?




Pop! OS

DamageInc

555 posts

Ultimate Geek
+1 received by user: 73

Lifetime subscriber

  #2038990 17-Jun-2018 10:12
Send private message

Ok this leads me to my next question please - which password manager?




Pop! OS

tdgeek
30048 posts

Uber Geek
+1 received by user: 9455

Trusted
Lifetime subscriber

  #2038995 17-Jun-2018 10:17
Send private message

freitasm:

 

You should never, ever use a single password for all sites. There's a thing called credential stuff, where bots will be used to try leaked email/passwords in other websites - and the chance of this hitting gold is pretty high if you reuse passwords.

 

Yes to password managers, not browsers. If using password managers then try using long passwords generated by the app. Use 2FA wherever available. Authy for 2FA since it synchronises between desktop and mobile devices so if you reset your smartphone you're not locked out of services.

 

Visit https://haveibeenpwned.com/ to check if your email's leaked and https://haveibeenpwned.com/Passwords to check if your password has leaked. 

 

 

Im guilty.....  But yes, I know. Ive been slowly appending a clue word to a random characterset to minimise forgetting them, and using Apple's password manager. Keychain.

 

Guilty as charged, but yep, easy for me, but silly too 

 
 
 
 

Stream your favourite shows now on Apple TV (affiliate link).
Gurezaemon
~HONYAKKER!~
1417 posts

Uber Geek
+1 received by user: 1567

ID Verified
Lifetime subscriber

  #2038998 17-Jun-2018 10:23
Send private message

DamageInc:

 

Ok this leads me to my next question please - which password manager?

 

 

Lastpass works well on pretty well every platform I'm aware of, and it is managed online. I use this through all my browsers. Using Lastpass instead of in-browser management means that I don't have to start inputting all my passwords again if, in the future, I decide to switch from Firefox to Chrome, Vivaldi, Edge, etc.

 

Because I am the paranoid type, I also back up all passwords into Password Safe https://pwsafe.org/ where I can keep track of other notes, various details, etc. that need to be kept private.

freitasm
BDFL - Memuneh
80658 posts

Uber Geek
+1 received by user: 41071

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #2039005 17-Jun-2018 11:05
Send private message

@DamageInc:

 

freitasm:

 

Visit https://haveibeenpwned.com/ to check if your email's leaked and https://haveibeenpwned.com/Passwords to check if your password has leaked. 

 

 

Dam not a good result visiting the above links.

 

Do you use Authy as well as a password manager or just Authy?

 

 

I use LastPass on my browser and smartphone. Authy is a 2FA (SECOND FACTOR) so it's in addition to your password. 

 

I recommend Authy beause Google Authenticator doesn't do backup of your codes and you lose your phone or reset it, you are in trouble.

 

You can enable 2FA on Geekzone on your profile page.




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

sidefx
3775 posts

Uber Geek
+1 received by user: 1295

Trusted

  #2039031 17-Jun-2018 11:35
Send private message

My setup is Keepass for everything, synched through dropbox - has an app for pretty much every platform I've come across. And 2FA where possible (though should really use it more)




"I was born not knowing and have had only a little time to change that here and there."         | Octopus Energy | Sharesies
              - Richard Feynman

amiga500
1484 posts

Uber Geek
+1 received by user: 422
Inactive user


  #2039055 17-Jun-2018 12:52
Send private message

Password Gorilla seems to work well and the password files work in Linux and Windows.

xpd

xpd
Geek of Coastguard
14116 posts

Uber Geek
+1 received by user: 4579

Retired Mod
ID Verified
Trusted
Lifetime subscriber

  #2039094 17-Jun-2018 13:15
Send private message

Mix of lastpass and keepass.

 

 




XPD / Gavin

 

LinkTree

 

 

 

 
 
 
 

Support Geekzone with one-off or recurring donations Donate via PressPatron.
Deamo
144 posts

Master Geek
+1 received by user: 63
Inactive user


  #2039099 17-Jun-2018 13:26
Send private message

1Password here. More costly than others, but I like it better.

 

 

richms
29104 posts

Uber Geek
+1 received by user: 10222

Trusted
Lifetime subscriber

  #2039114 17-Jun-2018 13:47
Send private message

Just be aware with password managers that not all sites have the same length limitations on the new user fields as the login fields, so you can set a password that it too long to be able to log in with again.

 

I tend to go for 16 characters or so most places. That should be accepted since that is something that is very easy for a person to type and remember. Going out to 64 is pretty pointless and breaks on many sites.




Richard rich.ms

mdf

mdf
3566 posts

Uber Geek
+1 received by user: 1519

Trusted

  #2039116 17-Jun-2018 14:14
Send private message

I've posted these links before (they're 5 years old now), but these articles were my wake-up call to password security.

 

Nate Anderson, a journalist writing for Ars Technica with no particular password expertise, turned himself into a password cracker using consumer grade equipment and free software in the space of a dayExperienced password crackers can crack up to 90 per cent of passwords without breaking a sweat.

 

I use LastPass with 2FA enabled. Works across desktop browsing and mobile phones (much, much better on Android than iOS though). It doesn't work perfectly on 100% of websites, but I strongly suspect that's more to do with the website design than LastPass itself.

jonathan18
7415 posts

Uber Geek
+1 received by user: 2850

ID Verified
Trusted

  #2039125 17-Jun-2018 15:00
Send private message

Lastpass and Authy combo for me. 

 

I had been a paid customer of Lastpass (mobile app initially required a paid account), but found when the sub ended earlier this year I lost none of the functionality - so there's no need to pay anything if running both Lastpass and Authy (amongst various free options).  

 

OP - be mindful that iOS doesn't play wonderfully with Lastpass (like many such apps and iOS!), so you may have to sometimes manually copy across passwords from the Lastpass app into a login window when logging in (or alternatively you can use the built-in browser). There's no such issue with Android devices (for which the Lastpass window will usually pop up) or in a browser. 

 1 | 2 | 3 | 4
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright