Hackers know half of passwords entered online, Cloudflare finds
-
My workplace has finally gone to passphrases and 1 year password life, which is nice as it's a password I often need to type, so I'd rather 20 easy to type and memorise chars than 16 random
The missleading thing about passphrases is that anything a human can remember is low entropy. That it has 20 charachers says nothing about how random.
-
Yeah I think I've got 600 distinct logins in my bitwarden at this point, lol.
This is a great example of how impossible it is not write down usernmes and passwords and how infeasible forcing changes is.
The other thing people do not talk about enough is usernames. They should be somewhat random too and not resued.
-
This is a great example of how impossible it is not write down usernmes and passwords and how infeasible forcing changes is.
The other thing people do not talk about enough is usernames. They should be somewhat random too and not resued.
Yep, before I switched to a password manager in college I had 3-4 passwords I would use across all accounts, and I would constantly need to recover accounts because I would forget the PW.
I actually don't remember the last time I needed to recover an account. Having a password manager has been a massive time savings for me.
-
This post did not contain any content.
-
There are password managers you can self host. Bitwarden being one of them. Secure it as much as you want and keep off-site encrypted backups if you're worried about a single point of failure.
Ah, yes, because self hosting is feasible for everyone
/s if that's not obvious
-
Ah, yes, because self hosting is feasible for everyone
/s if that's not obvious
You're right. It's better to just not use a password manager and use the same password on every site you go to.
/s if that's not obvious
-
Ah, yes, because self hosting is feasible for everyone
/s if that's not obvious
there should be a keepass+syncthing package available for normal people to use, i put keepass and syncthing on all my devices and that means I don't have to host a server while always having my password vault synced
-
You're right. It's better to just not use a password manager and use the same password on every site you go to.
/s if that's not obvious
Or do the sensible thing and minimize how many accounts you make on various sites because they're bullshit, which also has the added benefit of giving you a small enough number of accounts that you can remember the passwords
-
Or do the sensible thing and minimize how many accounts you make on various sites because they're bullshit, which also has the added benefit of giving you a small enough number of accounts that you can remember the passwords
"just don't use the internet" is not the hot take I was expecting
-
"just don't use the internet" is not the hot take I was expecting
Reread my comment. Your "own" is completely inaccurate
-
System shared this topic on
