You are not logged in.

#51 2010-10-02 07:05:49

shak
Member
Registered: 2009-03-16
Posts: 405

Re: How do you manage your passwords ?

I Just use a long password similar to all the others but a little bit different for each service i use

Offline

#52 2010-10-04 09:14:17

dakt
Member
From: Croatia
Registered: 2010-10-04
Posts: 67

Re: How do you manage your passwords ?

My head...I use some sort of bio algorithm to form my passwords.

Offline

#53 2010-10-04 14:57:58

stryder
Member
Registered: 2009-02-28
Posts: 500

Re: How do you manage your passwords ?

keepassx

Offline

#54 2020-01-28 21:42:56

no-cheating
Member
From: Mexico City
Registered: 2016-04-26
Posts: 46

Re: How do you manage your passwords ?

I have one long complicated password, which I know by heart and it's not written down anywhere. There is a part in the middle of this password that I modify depending on what service do I log into and with what username. That makes each service's password a little different.

Offline

#55 2020-01-29 04:01:02

ewaller
Administrator
From: Pasadena, CA
Registered: 2009-07-13
Posts: 17,472

Re: How do you manage your passwords ?

no-cheating wrote:

I have one long complicated password, which I know by heart and it's not written down anywhere. There is a part in the middle of this password that I modify depending on what service do I log into and with what username. That makes each service's password a little different.

... And the difference represents low entropy

Edit:  You might have a strong password on the order of 200 (impressive) bits,  but if the raw password is compromised, your derivative password might be less than 30 bits (pathetic)


Edit;  Oh, I  use pass.

Last edited by ewaller (2020-01-29 04:11:41)


Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way

Offline

#56 2020-01-29 15:54:02

qinohe
Member
From: Netherlands
Registered: 2012-06-20
Posts: 1,073

Re: How do you manage your passwords ?

ewaller wrote:
no-cheating wrote:

I have one long complicated password, which I know by heart and it's not written down anywhere. There is a part in the middle of this password that I modify depending on what service do I log into and with what username. That makes each service's password a little different.

... And the difference represents low entropy

Edit:  You might have a strong password on the order of 200 (impressive) bits,  but if the raw password is compromised, your derivative password might be less than 30 bits (pathetic)


Edit;  Oh, I  use pass.

200 bits should take a long time to crack and if there all in you head you'd need a good psychic to get it out wink
However, I never thought about the low entropy part...
Pass might be a better idea..

Offline

#57 2020-01-29 16:21:12

schard
Member
From: Hannover
Registered: 2016-05-06
Posts: 996
Website

Re: How do you manage your passwords ?

The point is that the password does not need to be cracked.
Crappy-Service.com just needs to store the users' passwords in plain text and get their database leaked that the accountant's brother-in-law hosts on his Windows XP home server.
Then @ewaller's critique applies. Just the varying part needs to be guessed.
I use three passwords:
* One master password for keepassx2 where all my online accounts are stored with max-length cryptic passwords
* One password for my linux user account.
* One password for my LUKS partitions.
I only need to remember those three and they are also cryptic and not written down or stored anywhere in plain text.
PS: I store my SSH keys' passwords in addition to keepassx2 in my gnome-keyring, so that I have them ready to go after login.

Last edited by schard (2020-01-29 16:25:30)

Offline

#58 2020-01-29 16:55:10

qinohe
Member
From: Netherlands
Registered: 2012-06-20
Posts: 1,073

Re: How do you manage your passwords ?

schard wrote:

The point is that the password does not need to be cracked.
Crappy-Service.com just needs to store the users' passwords in plain text and get their database leaked that the accountant's brother-in-law hosts on his Windows XP home server.
Then @ewaller's critique applies. Just the varying part needs to be guessed.

Fair point.

I use three passwords:
* One master password for keepassx2 where all my online accounts are stored with max-length cryptic passwords
* One password for my linux user account.
* One password for my LUKS partitions.
I only need to remember those three and they are also cryptic and not written down or stored anywhere in plain text.
PS: I store my SSH keys' passwords in addition to keepassx2 in my gnome-keyring, so that I have them ready to go after login.

I have my passwords in an encrypted container.
SSH and user account I do the same.
Passwords with low entropy are all OTP based.
Shops etc. all have their own PW stored in the encrypted container.
So, I should be safe, though, I should have a look at a PW keeper;)

Offline

#59 2020-01-30 05:29:28

twelveeighty
Member
From: Alberta, Canada
Registered: 2011-09-04
Posts: 689

Re: How do you manage your passwords ?

schard wrote:

* One master password for keepassx2 where all my online accounts are stored with max-length cryptic passwords

I do the same but with LastPass instead of keepass. The only things I do not store in LastPass are my personal banking passwords. I can't get myself to type that into a stored system for whatever archaic reasons.

Offline

#60 2020-01-30 11:26:09

zebulon
Member
Registered: 2008-10-20
Posts: 337

Re: How do you manage your passwords ?

There is Biwarden as an encrypted, online and open-source solution.

Offline

#61 2020-02-08 20:54:47

synapse_rift
Member
Registered: 2020-02-07
Posts: 5

Re: How do you manage your passwords ?

ewaller wrote:
no-cheating wrote:

I have one long complicated password, which I know by heart and it's not written down anywhere. There is a part in the middle of this password that I modify depending on what service do I log into and with what username. That makes each service's password a little different.

... And the difference represents low entropy

Edit:  You might have a strong password on the order of 200 (impressive) bits,  but if the raw password is compromised, your derivative password might be less than 30 bits (pathetic)


Edit;  Oh, I  use pass.

I'm with ewaller I use pass. I don't trust my memory that well

Offline

#62 2020-02-09 10:13:20

sekret
Member
Registered: 2013-07-22
Posts: 231

Re: How do you manage your passwords ?

I used to use supergenpass, now I use lesspass, which is basically the same, but better imho, because it also includes special characters. I generates passwords based on a master password, which is strong of course. To make it more convenient I use a dmenu-script for it. I use such passwords for every website and always as strong as possible.

So I know my master password, my luks password, user and root login password, my password for the university (generated by supergenpass, but I had to type it often, so eventually I remembered). That's it.

I just like the fact that I don't know any of my online passwords and they aren't written down anywhere. Gives me a strange kind of satisfaction :-) And when I talk to people about this (yes, happens sometimes), I always have a good riddle at hand.

Last edited by sekret (2020-02-09 10:17:55)

Offline

#63 2020-02-09 10:23:04

10PinkPanther
Member
From: Croatia
Registered: 2012-11-10
Posts: 374

Re: How do you manage your passwords ?

I store them in my empty head.

Offline

#64 2020-02-09 10:57:40

Head_on_a_Stick
Member
From: London
Registered: 2014-02-20
Posts: 5,542
Website

Re: How do you manage your passwords ?

Pen and paper.

Offline

#65 2020-02-17 11:17:35

xerxes_
Member
Registered: 2018-04-29
Posts: 296

Re: How do you manage your passwords ?

What do you think about storing passwords in kwallet, gnome-keyring or gnome-passwordsafe? Is it secure?

Offline

#66 2020-02-17 11:23:54

schard
Member
From: Hannover
Registered: 2016-05-06
Posts: 996
Website

Re: How do you manage your passwords ?

As always, it depends. I use gnome-keyring to store certain passwords.
I also use the password storages of firefox and chromium for storing passwords for certain websites.
Since I do not use that sync BS, all of these passwords are just sored on my local machines i.e. on a LUKS encryped partition, the password to which exist nowhere except in my head.

Offline

#67 2020-04-26 14:06:11

adamlau
Member
Registered: 2009-01-30
Posts: 418

Re: How do you manage your passwords ?

pass. Because it is just too simple and elegant to not use.


Arch Linux + sway
Debian Testing + GNOME/sway
NetBSD 64-bit + Xfce

Offline

#68 2020-05-10 17:49:58

cdwijs
Member
Registered: 2010-04-24
Posts: 185

Re: How do you manage your passwords ?

I write my passwords down on a stapled stack of square papers.

I use too many systems to keep a synchronized password manager going.

Offline

#69 2020-06-03 16:55:15

porcelain1
Member
Registered: 2020-01-18
Posts: 32

Re: How do you manage your passwords ?

I keep everything in KeePassXC. I sync the password database through devices with SyncThing. On accounts I may have to access outside my computer or smartphone, or my own computer and smartphone password, I choose a long combination of random, rare words, which is quick to type and I suppose a bit secure entropy-wise, considering special characters from my native language. Dunno about dictionary attacks. I want to get the habit of periodically changing passwords, but I'm too lazy for that to bother.

Offline

#70 2020-06-03 17:10:10

NibblesMctwitch
Banned
Registered: 2020-05-28
Posts: 5

Re: How do you manage your passwords ?

Check out BitWarden it is free and open-source software, I got rid of Dashlane to use it.

Offline

#71 2020-06-03 17:45:11

dmerej
Member
From: Paris
Registered: 2016-04-09
Posts: 91
Website

Re: How do you manage your passwords ?

An other happy user of pass here. Oh, and I stopped trying to memorize passwords a long time ago.

I only use pass *phrases*. Something like "Catch me if you can!", but harder to guess.

I have one passphrase for the gpg key, another for my Linux session and that's pretty much it.

They look very impressive when I type them but since it's mostly text it' s quite easy to time them without mistakes.


Responsible Coder, Scrum Master, Buildfarm Guru, Python3 Fan
twitter: @d_merej mastodon:@dmerej@mamot.fr

Offline

#72 2020-06-03 18:49:27

mpan
Member
Registered: 2012-08-01
Posts: 569
Website

Re: How do you manage your passwords ?

For a long time I was using KeePassX2, but lately I have switched to KeePassXC due to X2 appearing dead. Except for having to switch from Ctrl+U/Ctrl+V to Ctrl+Shift+U/Ctrl+Shift+V for URL opening and autotype, and some minor gripes with how UI works, the switch was painless.

At the same time I’ve also switched to a single Diceware-generated passphrase for all things that I use without a password manager and I use locally only. If an attacker gains access to my account, the difference between having a single secret and many of them is negligible: within at most a few days I will type them all and they will be compromised. “Switched” is, perhaps, not the best word, because I am still in the process of changing that. One word at the time, giving myself around 4 weeks to learn the new version.

I also have two other secrets I must remember. The debit card and the SIM card PINs.


Sometimes I seem a bit harsh — don’t get offended too easily! PGP: 7C848198AE93D3BB

Offline

#73 2020-06-04 01:04:24

ratcheer
Member
Registered: 2011-10-09
Posts: 780

Re: How do you manage your passwords ?

I use KeepassXC on my desktop and notebook systems. Until recently, I used Keepass Mini on my mobile devices, but it is no longer supported. So, I have switched them to Strongbox, which is also compatible with my Keepass database.

Offline

#74 2020-06-04 08:39:18

SanskritFritz
Member
From: Budapest, Hungary
Registered: 2009-01-08
Posts: 1,834
Website

Re: How do you manage your passwords ?

porcelain1 wrote:

I keep everything in KeePassXC. I sync the password database through devices with SyncThing. On accounts I may have to access outside my computer or smartphone, or my own computer and smartphone password, I choose a long combination of random, rare words, which is quick to type and I suppose a bit secure entropy-wise, considering special characters from my native language. Dunno about dictionary attacks. I want to get the habit of periodically changing passwords, but I'm too lazy for that to bother.

Funny, my approach is exactly the same. In every way, KeepassXC, Syncthing, password formats and lazyness big_smile


zʇıɹɟʇıɹʞsuɐs AUR || Cycling in Budapest with a helmet camera || Revised log levels proposal: "FYI" "WTF" and "OMG" (John Barnette)

Offline

#75 2020-06-22 20:14:50

Jared.Syu
Member
From: Trinidad and Tobago
Registered: 2020-04-08
Posts: 5

Re: How do you manage your passwords ?

Mainly with Pass due to it's integration with dmenu/rofi and on browsers.


Generic response; Operation Stated: Invalid.

Offline

Board footer

Powered by FluxBB