Password Setup

wilnj · 05:03 PM

Maybe this belongs in the Things That Suck About Getting Old thread but what do you guys do about passwords for various online log ins?

It seems to me that writing them all down in a notepad seems less secure than any alternative. But I’m continuously frustrated by the need to create entirely new passwords when I’ve been unable to log in because I’ve forgotten what variations I used previously.

It’s even more frustrating because I feel that I’m as likely to get hacked because of a large scale breach at the service I’m using as I am a targeted hack of my individual account.

I use an iPhone if it makes an difference. Any great ideas?

Sent from my iPhone using Tapatalk

John Rogers · 12-04-2018, 05:12 PM

I have about 45 or so passwords and keep them in a text file with a name what has spaces and such in it. I have the link, user ID and password listed. For websites that are similar to Pelican or any others I call "fun" sites I use an easy to remember password that is meaningless and if someone breaks in to this site or similar it is no big deal. The file is in a sub directory that has nothing to do with stuff like that.

Of course, DO NOT keep them on your iPhone and make sure your router has it's key changed regularly and do not give it to anyone!

Since I did write a lot of the 914 tech articles, the NSA or FBI or CIA might come after me if Pelican ends up owned by the Russians!

sc_rufctr · 12-04-2018, 05:27 PM

I use this... https://keepass.info

It works well and it's free.

MBAtarga · 12-04-2018, 05:51 PM

I use dashlane on my iphone.

Several threads already here on PP OT that have info:

Dashlane & Other Password Apps

How To Keep Track Of Passwords?

stomachmonkey · 12-04-2018, 06:06 PM

I use Lastpass.

The most effective way to use a password manager is to let sites assign a random password or bang in gibberish on the keyboard.

id10t · 12-04-2018, 08:08 PM

I have a system based on what it is for (security level) and a few "base" passwords for each and then I add site/service/machine specific info. At work almost all webstuff is AD/LDAP but format of username varies while password remains the same. Reminds me I have to change mine in 8 days...

Also use ssh keys where possible.

flatbutt · 12-05-2018, 07:52 AM

I go old school and keep a list of sites vs passwords in one special place on a book shelf. To generate a PW I open a dictionary, use the first word I see as the base and then extend with gibberish that I record on the list.

Seahawk · 12-05-2018, 08:03 AM

I use My Eyes Only.

https://www.myeyesonlyapp.com/my-eyes-only-pro-personal-data-security-app

The app travels well, which is important to me.

Remember, however, I am one step away from destroying textile machinery as a form of protest.

I am looking at Lastpass

wildthing · 12-05-2018, 08:35 AM

There was an earlier thread on passwords and basically my recommendation is a combination of the following:

Some short phrase you like, something about the site, and some non-birthday number, replacing some characters and/or adding special characters. For example:

Qu1ckBr0wnF0x#3170Ch@se
Qu1ckBr0wnF0x#3170B0fAm#r1c@

VincentVega · 12-05-2018, 09:08 AM

Another good option, https://pwsafe.org/

complex is key, mix case, toss in all sorts of characters, make it long. Then try to remember it.

1990C4S · 12-05-2018, 09:12 AM

I use a 'generic' password for everything that meets 99% of the website requirements.

Two uppercase, some lowercase, and two numbers.

widebody911 · widebody911's Garage

Quote:

Originally Posted by 1990C4S

I use a 'generic' password for everything that meets 99% of the website requirements.

Two uppercase, some lowercase, and two numbers.

The nice thing about that is once it's compromised on one site, it's automatically compromised on all the others.

VincentVega · 12-05-2018, 12:19 PM

G3nER1C ??

Way too many credentials to remember at work, its notpad or passwordsafe

1990C4S · 12-05-2018, 12:45 PM

Quote:

Originally Posted by widebody911

The nice thing about that is once it's compromised on one site, it's automatically compromised on all the others.

It's not used on my bank, if someone wants to access my Pelican account or my LinkedIn, go for it. The vast majority of passwords protect things I don't care about.

HardDrive · 12-05-2018, 02:03 PM

Oddly named text file that appears to be a system file. Printed copy in a safe place.

wilnj · 12-05-2018, 02:06 PM

Do any of these apps work for auto filling another app?

Sent from my iPhone using Tapatalk

onewhippedpuppy · 12-05-2018, 03:12 PM

I think it's awesome how I create ultra complicated passwords that I regularly forget for various websites, only to see them get hacked and my data compromised anyway!

T77911S · 12-06-2018, 04:28 AM

i too have around 45 passwords for work, maybe more.
I just write them down and have them at my desk.
I have to type in 2 just to get into my computer and then I have another one to keep track of for internet/network
they password us so much it gets unsecure because we cant keep track of them.

I have at least one program that starts 30 days out telling me my password will expire.
the bad thing is instead of making you change it 30 days I get locked out. WHY NOT JUST MAKE ME CHANGE IT instead of giving me a 30 day warning, every day!!

I have another that locks you out for 15 minutes AFTER you change it. WHY!!!!

I use to have a program that had a password to generate a password for it.

John Rogers · 12-06-2018, 05:11 AM

I might be paranoid and I know I am getting old BUT, I would never trust a program that saves my passwords weather it is free or paid for! I would be imaging that a couple of kids in New York that wrote the code are pulling just a few accounts each week, not enough to cause panic but enough to maybe get a few thousand or so?! When it comes to that sort of thing I only trust myself!

MBAtarga · 12-06-2018, 05:25 AM

A co-worker about 4 employers ago (and 30 years) used 6ULDV8 as his password whenever it fit in the requirements.