How do you protect your passwords? Seems that if you store them online, an app that looks bulletproof today could be hacked tomorrow. No matter how careful you are at devising passwords, they are still vulnerable.
|
There are isolated problems with current patches, but they are well-known and documented on this site. |
-
Password security
- This topic has 12 replies, 8 voices, and was last updated 1 month, 3 weeks ago.
Viewing 9 reply threadsAuthor-
I would never store passwords online for exactly the reason you say. It’s not IF a site will be hacked, it’s WHEN. For a similar reason I would not store passwords on a computer unless I had an absolutely fail safe way of retrieving them in case of hardware or software failure. Of course nothing is absolutely fail safe so you have to make your own judgement about what works for you. I make as few online accounts as I possibly can, and I store my PWs the old fashioned way – paper, pencil, lockbox. I use a couple of other tricks so that even if the PWs were stolen they would be of no use unless the thief knew some other information. But I don’t advertise what those tricks are.
4 users thanked author for this post.
-
I do not use a password manager (with exception below) or store any of my passwords online. I store my list of passwords in two places – one for use and one for backup. The backup is an encrypted password protected Word document which is stored on a drive that is not connected to a PC except to be updated. The Working list I use is in an encrypted password protected Note document stored on my iPhone. To see the working list you must enter my iPhone’s enhanced password and then the password for the encrypted document. No passwords are stored on any of my PCs (see exception below) or online yet they are readily available with my phone.
The only exception to this is I use Chrome’s password manager to keep and handle those passwords for web sites pose a low risk if hacked such as Ask Woody or a news site.HTH, Dana:))
3 users thanked author for this post.
-
I don’t use passwords manager cloud or in a browser.
I use an encrypted document with backup for the passwords that I don’t remember (I do remember ~15 passwords).
I change my bank’s password every month although I log-in using iPhone’s FaceID.1 user thanked author for this post.
-
Encrypted technology within a password manager has worked here for a good few years now. One lengthy complex password to remember, reveals all my stored passwords and less taxing on my own memory cells..I just DON’T do anything browser related or cloud connected.
Have backups outwith our humble home also as an extra measure, buried next to a relative at a cemetry just in case a meteor hits the house, remember the movie plot of the classic spaghetti western ‘the good, the bad and the ugly’ lolKeep IT Lean, Clean and Mean!2 users thanked author for this post.
The only exception to this is I use Chrome’s password manager to keep and handle those passwords for web sites pose a low risk if hacked such as Ask Woody or a news site.
How do we know it was YOU who posted this? /s
Keep IT Lean, Clean and Mean!1 user thanked author for this post.
This week’s article is exactly how to protect passwords.
I don’t recommend storing passwords in browser managers.Susan Bradley Patch Lady
1 user thanked author for this post.
OP here- my thanks to all who have posted on this. My own strategy, in keeping with my caveman persona, is a 3×5 card file with p/w’s and other site-pertinent info that lives in a fireproof safe when not in actual use and whose location will not be mentioned here. Like Alex5723 and probably others, several often-used p/w’s also live in my head.
Glad to know I’m not the only one who questions the wisdom of storing such online.
Those sites using 2-factor identification, e.g. a return phone call supplying a typically 6-digit code, are appreciated and all but that process begins with a password too.
I use an offline password store – there is just too much data to keep in a non dedicated app, from security questions to CC details, passports, computer model / serial… Plus my manager will enter the credentials into sites / apps / email and anything else I use. It also works on my phone and I have a backup in the cloud in case I need a copy in an emergency.
All I need to do is remember one strong password.cheers, Paul
3 users thanked author for this post.
I would never store passwords online for exactly the reason you say. It’s not IF a site will be hacked, it’s WHEN.
I’m with DrBonzo on this, and have been for 20+ years.
2 users thanked author for this post.
Viewing 9 reply threads
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Microsoft PC Manager (beta) updates
by 4 hours, 21 minutes ago
-
Ubuntu Cinnamon becomes an official flavor, making Linux Mint obsolete
by 2 hours, 27 minutes ago
-
HDMI KVM switch for DP
by 10 hours, 12 minutes ago
-
My Experience with Win 11 ver 22H2
by 16 hours, 36 minutes ago
-
Email from Mail on my iPhone to Gmail address failed
by 16 hours, 4 minutes ago
-
Can’t Update Win 10 past 21H2
by 18 hours, 43 minutes ago
-
Revo Uninstaller (freeware) Updates
by 11 hours, 12 minutes ago
-
The Third deployment phase for CVE-2022-37967 starts April 11, 2023
by 19 hours, 11 minutes ago
-
Firefox to support Windows 7 and 8 systems well into 2024 at least
by 3 hours, 39 minutes ago
-
Microsoft 365 Personal – Repeated Free Two Month Extensions
by 21 hours, 17 minutes ago
-
KB5023702 for Server 2019 – Defer as of MPL March 27
by 2 hours, 41 minutes ago
-
eSIM out, iSIM in?
by 1 day, 4 hours ago
-
MS-DEFCON 4: Win11 22H2 not ready for prime time
by 1 hour, 4 minutes ago
-
Email from Mail on my iPhone to Gmail address failed
by 1 day, 7 hours ago
-
Microsoft Edge Remover
by 17 hours, 52 minutes ago
-
Windows Desktop refreshes repeatedly every few seconds
by 2 hours, 8 minutes ago
-
Apple zero days fixed today
by 1 day, 2 hours ago
-
W10 22H2 Desktop rogue icon won’t allow me to rename, delete, or replace it
by 23 minutes ago
-
Footnote separators not deleting
by 1 day, 15 hours ago
-
Should I Go Beyond Version 21H2
by 7 hours, 28 minutes ago
-
MacStealer: New macOS-based Stealer Malware Identified
by 1 day, 14 hours ago
-
PowerShell – Testers Needed
by 10 hours, 12 minutes ago
-
Audio from www.whenradiowas.com stops playing after 7-20 minutes
by 23 hours, 9 minutes ago
-
KB4023057: Update for Windows Update Service components
by 18 hours, 17 minutes ago
-
win 12 as BORG?
by 1 day, 15 hours ago
-
Windows 11 — should I stay on Windows 10?
by 18 hours, 28 minutes ago
-
Did I really install PaintShop Pro?
by 1 day, 15 hours ago
-
You’re fired if you don’t know how to use GPT-4
by 11 hours, 35 minutes ago
-
Microsoft 365 Copilot announced
by 1 day, 1 hour ago
-
What’s wrong with OneNote — and what you can fix
by 8 hours, 26 minutes ago
