What's the best safe way to store passwords?
My work uses LastPass--because it's work, I accept it and allow that system to have my passwords.
What about for home?
I used to use KeePass.
Anything online is possibly able to be a security risk. Chances are slim, but ya never know... I don't use password managers because when I'm away from home the option may not be around to use that manager. My two cents.
Can't say it's the best but I'm keeping mine in 2 encrypted USB flash drives.
man I thought I lost one unencrypted with our Fed tax return one year. I then proceeded to do the credit freezes and considered lifelock but considered it a scam. then I found it in a pants pocket lol
That's very good advice, that all USB flash drives should be encrypted, so if you lose it, nobody can use anything on it...I even experimented repeatedly using wrong passwords, and it erased itself...
Anytime you store your passwords digitally, you are assuming some level of risk, however small it may be.
Sometimes, the rewards outweigh the risk though. If you do store your passwords digitally, there are some tricks you can use to reduce the risk. Apply an algorithm known only to you. It can be as simple as reversing the character order.
Yeah, it won't stop a determined hacker but it will make him work for it. Rather than waste his time with you, he might move on to someone else.
I've used Roboform for years and feel it is secure as it can be. You have one master password and then all of your other passwords are available and can fill forms on your command. It can be added to a usb device for portability. They allow free use with a limited number of passwords that can be saved. Normal use is you fill in a form with all your info and tell Roboform to "Save Form". You can save none password info and later fill any form with name, address, email, etc..
I too use Roboform, but I use the paid version of Robo everywhere, meaning I can sync it on all my devices.
I use Password Safe (https://pwsafe.org/) but admittedly it is a relatively bare bones utility, hence the reason it is free. It will for instance not synch across devices because it maintain the "vault" on the device where installed.
I am also currently looking at Enpass, a full bells and whistles password manager. There is a free version for desktops and several pricing options. See https://www.enpass.io/ for the details.
Tiny Password. FREE and has an unlimited number of entries.
For older devices you use a password code of your choice to access it, newer devices also use your fingerprint to access. Chose any two fingers.
For IOS in the APP store and I think Android is available too.
I've been using Roboform for years and years. Secure, multiple devisec always in sync and I can access from any computer to their website
I have used an App called Password Wallet.
Lastpass is about as secure as you can get - even though it's online. My biggest fear wouldn't be security, but a hacker being able to delete the files/databases (extremely unlikely). Equally unlikely is anyone being able to hack the encryption, including Lastpass itself. Where encryption is local, it may or may not be secure as you don't know what encryption is being used. If it's not using at least AES with 256 bit encryption with a strong password that is different from all other passwords used and not stored locally with weak or no encryption, then it is worthless.
I'm just a user, so I accept that my employer said to use it. Because there are simply way too many passwords, literally they just appear out of nowhere. (Here's your login for xyz and it doesn't even follow any format, someone made up the username and it's not pointed at our email)
It seems for it to work, I need to login 1X when I start work. And to do so, I need to be on the domain, so in my case vpn. Never tried on a non work computer....
On a piece of paper and keep it under the keyboard. I thought everybody did that.
Done that for years for super secure ones I didn't want hacked! Lol!
I never heard of Roboform but I just checked it out and it it looks good and is not too expensive. I need something for multiple devices. I was using Dashlane but the free version only allowed limited passwords and I don't love the program enough to purchase it.
Passwords are changed on all devices in real time.
true story, I worked once a week in a skyscraper downtown. We had offices on 7 and 8, and there was a room on 12 where we kept valuable stuff. It had one of those door locks where you have 5 buttons 1 to 5, and you press 2 combinations of 2 at a time, then 1, and the door unlocks.
My coworker wrote the combination on the door jamb, so she wouldn't forget it.
This woman also asked me, "How much money do you make?" hahahahahahahaha this was in 1999 so I told her I can't win if I tell you. either I confirm much less than you do, which is what I think, or, I make more and you get upset. She said ok, I understand.
Another true story--boss called where are you guys can you run up to 8 and blah blah blah.
I said, oh, um, we're in the Reading Terminal Market (the zany coworker said we can go there for a 2 hour lunch). I was about 3 weeks into the job.
I use lastpass for many years and highly recommend it. I tried BitWarden recently, but LP has a better user interface, IMHO.
terms | privacy | contactCopyright © 2006-2020