Comments on: How do you keep track of all those passwords?

By: KeePass or LastPass? Comparing Two Free Password Manager Software Tools | Sync Blog

Mon, 16 Aug 2010 18:23:44 +0000

[...] Like me, you probably have a mass of password-protected online accounts – email, Facebook, online stores, online banking, PayPal, eBay, web forums, etc., etc., etc. Best practice says you should use strong passwords and that each account should have a unique password. Okay, but this leads to an obvious problem: how the heck do you remember a multitude of complex passwords like ?lACpAs56IKMs”? And it’s this very problem that causes people to use simple, easy-to-remember passwords – such as “password”! There are, however, a couple of solutions. One option is to write your passwords down and keep the list in a secure place (no, a post-it note attached to your monitor is not a secure place!). While there is nothing wrong with this approach, it’s not particularly convenient. A better option is to use a password manager such as the excellent KeePass or LastPass (which I’ve briefly mentioned before in this post). [...]

(Report comment)

By: Do We Really Need to Use Strong Passwords? | Sync Blog

Do We Really Need to Use Strong Passwords? | Sync Blog — Wed, 28 Apr 2010 20:02:36 +0000

[...] with this post – I’m simply opening the subject for discussion. Do you think that complex passwords provide the best protection for your online accounts, or that shorter passwords can be equally as effective? Leave a comment [...]

(Report comment)

By: Learn how to type upside-down (and when it's not a good idea) | Sync Blog

Learn how to type upside-down (and when it's not a good idea) | Sync Blog — Tue, 30 Mar 2010 20:42:43 +0000

[...] say you can use their website to create very strong passwords, but a word of caution about that is in order. The website doesn’t actually generate [...]

(Report comment)

By: John Barnes

John Barnes — Mon, 25 Jan 2010 13:07:14 +0000

We use Secret Server for our team.
http://www.thycotic.com

It does the enterprise stuff for teams – web-based, AD integration and active password changing on the network. Plus it also has a native iPhone front-end application.

(Report comment)

By: Stefan

Stefan — Mon, 25 Jan 2010 08:55:05 +0000

5 star tool for me is Sticky Password

http://www.stickypassword.com

Because I hate toolbars and I want USB version of it always with me. It is cheaper, faster then Roboform. You can try it.

(Report comment)

By: Stefan

Stefan — Mon, 25 Jan 2010 08:53:45 +0000

I use Sticky Password

http://www.stickypassword.com

It is great for web pages and applications also. It does everything automatically, so there is no need copy it or rewrite it like in Keepass.

(Report comment)

By: Bodhi

Bodhi — Sat, 23 Jan 2010 00:56:13 +0000

Hmmm
Some very good ideas discussed here. I agree that you can never trust a public network, even WEP protected networks can be cracked in mere minutes. I cannot say I have never used Aicrack, though never for malicious purpose. I used to use KeePass Portable for safe storage, but now I have aquired an IronKey, I find it does a better job.
Remember, no Excel file is ever safe, so that is a big NO for password storage.
Stay safe on the web, and don’t become the next vicitm of identity theft!

(Report comment)

By: Jay

Jay — Fri, 22 Jan 2010 10:33:55 +0000

Great advice Albert,

In fact, that’s pretty much the same system I use in a way. Two reasons I changed to Roboform Pro. Laziness. Auto logins that are encrypted mean I have less typing to do and remembering of “important” sites I frequent.

Also, since you seem very intelligent especially privacy wise, note this unless you know. Then pass it along. NEVER use Wi-Fi in public for anything private. Even if from your own laptop. Google “aircrack” to learn what the kids use for fun. As an IT pro & programmer my whole life I’ll say that the search I just gave you is one of the weakest tools.

Roboform will not save anyone either. These tools get it all unfortunately. Hate to make average people paranoid, but I ran an unlogged experiment a year ago. The results were mortifying. It’s a wonder that ID theft is such a mainstream crime these days.

Here’s to awareness for those that read this; and for the record I saved NO data that I mined in that project, it was simply to see how “safe” people think they are.

Many need to be educated before their lives lives are ruined by criminals. It happened to me and I am an industry professional.

Anyway, thanks for your tips. People who even go that far as you describe will be somewhat safer with passwords and data.

Peace,

~Jay

(Report comment)

By: Albert

Albert — Fri, 22 Jan 2010 10:13:10 +0000

Use words and number from childhood days which no longer exist or cannot be tied back to you. An old phone number which your mother made you memorized in case you got lost. Old words and numbers that are still well embedded in your memory. I also have three levels of passwords. The lowest one I use on many thing because it impacts nothing if discovered. A midlevel for medium security and a complex high level code for things that deal with cash. There are a few of the high level ones and this is kept also on a password protected spreadsheet. The password is never written on the spreadsheet but there are notes that will help me remember them. The notes mean nothing to people who do not know me well since I was a child.

(Report comment)

By: Jay

Jay — Fri, 22 Jan 2010 05:50:14 +0000

Apologies…just wanted to add that I haven’t looked in a while, but holy cow, they even have multi-platform versions for most smartphones now. Such as Blackberry’s and the like. :O Madness.

(Report comment)