72 replies to this topic

[notta]

Well, I got a call from my bank today. Someone charged $99 dollars on my charge card from iTunes. This is the first time this has happened to me. My bank and my iTunes accounts have been addressed, but now I feel I should go around and change all my passwords. How do you guys manage your passwords? Most of my passwords are exactly the same for all my sites, I know, I know, so now I feel I should go around a change all my passwords just in case. I would love to have a different password for every site, but there is no way I'll remember them. I'm also not a big fan of using password managers because I hate the fact that all of my passwords are sitting in one spot. LastPass looks like a good idea, but again a central point of failure for all your passwords. How do you guys manage your passwords?

[Travelar]

I use LastPass with Yubikey for two-factor authentication. All of my passwords are randomly generated and I don't use similar passwords for any sites.

[Hum]

Very badly.

I just juggle them in my head.

[OTAU]

All in my head. Some of them are very complex but regardless I try to avoid saving them anywhere. I let Google Chrome save some passwords that I don't really worry about however. But passwords for things such as email, all in my head.

[Eddo89]

I remember the important passwords in my head (Facebook, email, bank, work/uni etc, Trade Me(basically NZ's Ebay) anything identity/money involved) and I make it a point to access them often so it is ingrained in my memory.


As for lower risk, I have the same segment of a password in every one of them and then a satirical play of the name. Or simply the name of the website even if I really don't care about that account/website.

[Nashy]

I remember them. Not much point if I have to write them down somewhere.

[+Mephistopheles]

I memorise them. Different applications have different password strengths - my online banking password is stronger than the one used for Neowin for instance.

[medium_pimpin]

Keepass. I store the encrypted DB file on dropbox, so I can access it from home/phone/etc. Also keep all my game and app keys there.

[martinsc]

medium_pimpin, on 10 April 2012 - 12:34, said:

Keepass. I store the encrypted DB file on dropbox, so I can access it from home/phone/etc. Also keep all my game and app keys there.

This is exactly the same I do it

[~Johnny]

I have a random little pattern for my passwords, something like:

[first two letters of site name] + [main password] + [length of site name as a number] + [punctuation mark depending on TLD]

They all mostly the same main password in the middle but with some extra strength around it, which means I likely won't ever forget them but still being different enough that even if someone steals one they probably won't work out the rest...

It's obviously not that pattern though

[Muhammad Farrukh]

Quote

How do you manage your passwords?

I don't.
My brain does

[UndergroundWire]

I use the same password for everything ($1One0Zero$) I use. I even use the same user name Gmail, bustybabes dot com, Citibank, etc...

[Medfordite]

Travelar, on 09 April 2012 - 22:41, said:

I use LastPass with Yubikey for two-factor authentication. All of my passwords are randomly generated and I don't use similar passwords for any sites.

Same here

As far as password length, I use anywhere from 14 (for non-essential sites), to 25 characters long (Most recently my root password for my VPS).

[qdave]

passwords.txt

Seriously though i try to remember the few i have.

[DARKFiB3R]

Another vote for KeePass/Dropbox + the mobile app. There is no way in hell I'm going to remember 700+ passwords. It's also good for storing other info to go along with those accounts/services/passwords.

I also use LastPass to store less important passwords (which is most of them), so that I can have faster access to them. (user/password fields get auto filled when logged in to LastPass)