How do you manage your passwords?
With my brain, faggot
use the same one for everything
>asdf1234
plaintext file
nobody comes here anyway lol
>>46797308
This.
I just pull them off my mnemonic password generator, once you use one of them a couple of times it is really easy to remember.
keepass.
>>46797310
>>46797308
b-b-b-but every password should be a random scribble of ciphertext-looking gibberish with special characters, numbers, and capital and lowercase letters and you should never use the same password twice amirite guys?
>>46797413
>having shit memory
>>46797308
weak and few passwords
>>46797310
>gets one service compromised, gets everything compromised
>>46797333
risky assumption
>>46797362
complicated
>>46797373
Master race.
>>46797413
>being this stupid
>>46797291
Gpgpgpgpgpg
>>46797291
I keep my passwords and employees' social security numbers on a text file on my desktop.
>>46797291
>supergenpass with subdomain removal unchecked
>>46797444
>weak and few passwords
See >>46797438
>>46797291
post-it note under keyboard like everyone else
>>46797291
LastPass. Good security, meh usability, but it works great and syncs across all my devices. Bonus points for letting me share accounts to my friends who use it as well.
>>46797490
>start firefox passwords.txt
>copy paste into field
Pic related
I really should be using keepass.
In a pastebin on my bookmarks toolbar
>>46797527
I use a mobile app. Seven different master passwords, generates a hash based on the websites url.
If im not using my same password I usually just put the username/email backwards with numbers that mean something if numbers needed. It's retarded but even if I forget the password I can just figure it out.
>>46797513
I did that, until I got lost in the sea of permutations and mnemonics.
pass
on a piece of paper that has each password embedded into what appears to be a coherent sentence, so that anyone who might read it will assume it's reading material.
>>46797602
Pass is really nice. I use it for my work stuff. But can you also use it on Android?
Keypass 2.19 with Backup DB database
>>46797291
I save each password in a plain text file, with the name of the website as the filename. I keep them all in an encrypted virtual drive.
That is a backup, as generally the web browser has the passwords memorized already, in my session.
>>46797291
I use lastpass, tis pretty convenient, I change master pswd regularly
>>46797646
I don't really log in to things on my phone because I don't want to trust it more than I need to, but I'd assume you could at least install a terminal with git and gpg, and it'd work like on your computer. I don't know of any more user friendly UIs, though, sorry.
I memorized a formula that I use to construct passwords.
A sentence which depends on how important the password is + capital letters and numbers + a part of the site name.
All passwords are unique and easy to remember.
I keep a backup of all passwords in a .txt file in a Truecrypt container, which is encrypted with 7zip.
>implying I haven't forgotten all of my passwords and don't have to reset them every god damn time I enter that specific site
I can't remember shit.
>>46797573
What's that?
Keepass.
Actually, I should make a backup. If I lost my copy I'd be fugged.
wtf is a password?
>>46797702
OK there seems to be an Android client in development.
https://github.com/zeapo/Android-Password-Store
And how do you sync your passwords? Local Git server?
>>46797786
1Password for OSX
>>46797868
Cool!
>And how do you sync your passwords? Local Git server?
I have a server at home that I sync to. Though I guess you could use any git workflow you want if you don't have one of those.
>>46797291
Physical notepad that I never take anywhere. If someone breaks into my house it'll be the least of my worries anyway
I use passwordsafe, developed by Bruce Schnier. Pasaffe on linux.
Can someone post that weird picture of characters that people use to generate passwords and explain how it works?
>>46797291
I let google manage them :^)
>>46797291
I remember my email password, and any time I need to log into anything else I just reset the password to a random string of numbers and letters.
i have them all on random pieces of paper scattered around my room.
Pass. GPG encrypted 32-character long randomly generated passwords backed up with Git.
http://www.zx2c4.com/projects/password-store/
KeePassX
I like to think it's a bit saver than plain text.
am i the only one?
There are people on /g/ right now who unironically don't use keepass
>>46797308
This.
Should I use KeePass or KeePassX?
I don't understand the difference.
My mind.
>>46797291
Don't worry, NSA manage your passwords.
>>46797291
brain.exe
>>46800390
Keepass is a windows program they also ported to linux in mono
Keepassx is written by different people and is linux native
try both and use whichever you feel like
Keepass
>>46797291
my password is the same, 4 zeros in a row, or 5 zeros in a row followed by a big o
I have a plaintext file on the document root of my webserver which I can access via webbrowsers if I need one while for example sitting in an internet café.
>>46797291
I write the password on a sheet of paper, use it until I remember the password and burn down the paper afterwards.
>>46797444
>>46797310
Only if they somehow knew you used the same one for everything. And what's so "stable and secure" about having to write all of them down somewhere?
>>46800619
>>46800390
I'm indecisive as fuck. Just tell me which one is better.
>>46797736
Give an example. Pretend you needed a new bank pw
>>46800658
Could you provide me a link?
>>46800714
I use keepass
Its uglier but i think it has a couple more features
It's Twi1igg3r! (Seriously) for everything
First name + last name + birth year, no spaces. For every account
I use lastpass.
Before I used keepass, but it has shit integration with firefox, it doesn't sync well, and it is windows only (mono is shit).
With lastpass I don't have to worry much about where I am, as I even have it on my android device. It isn't too expensive anyway.
>>46800734
howdowegetsomequickmoneyhere53GOrabo
>>46801010
Hey anon what was your name again?
How old are you now?
Oh and your last name?
"Click here if you forgot your password"
I use this pretty much daily
>>46797291
Pseudo randomly generate them and store them in an encrypted text file.
>>46801297
Neckbeard Mioismywaifu 1996
Why do you want to know?
>>46797308
You'd better hide.
Either you're using shit passwords and you'll have your identity stolen in the next hack, or you possess a brain that science will literally kill to research.
>>46802448
>Hackers hate him!
pic related, super easy to remember these passes
when i really don't want them to be bruteforced i shift all of the characters in one direction on the keyboard. that way it's still memorable, but no longer contains dictionary words
>>46803295
The problem with this method is the "look-over-the-shoulder" vulnerability. I.e. people who you know/work with, rather than random brute-forcing hackers. (Depending on what your profession is, one might be more dangerous than the other)
The benefit of having a "random character" password is that even if someone just saw a fraction of the keys you hit, they would have no way to extrapolate the rest. Not the case for passwords made out of words.
LastPass with 20 randomized characters and foreign characters like € and £
>>46797822
I wish there was a way to unlock keepass with my fingerprint
>>46797579
Are you an idiot? You do realise how unsafe this is, right?
>>46797291
I use lastpass.
>>46797291
In my brain. My password is similar to cT15v87lrUm! but with a different couple of characters for each site.
my password was password but then cnn told me to change it to pa$$word
>>46803700
>not using p4$$w0rd
I have just installed keepass2 on a debian machine. Can the app or its db be copied or exported for use with keepass2 on another machine?
>>46803475
Good point. I feel like the key shifting could help with that though.
Like they'd see me typing a bunch of seemingly random characters, and unless they notice that the keys I'm pressing are adjacent to other keys that would spell out a word, I'm probably in the clear
>>46803740
You can sync it with Dropbox and hope the NSA don't have a 0day
>>46797291
>How do you manage your passwords?
Last Pass
>>46797291
http://www.passwordstore.org/π
Password manager done the KISS way. You're welcome, fellow hackers.
>>46797868
>Local Git server?
I have my password store repository in two places:
1. VPS
2. Github private repo
>>46803863
The have 0days for everything, but yeah, I get it.
Am gonna have a play with this now. For years I have relied on a gpg encrypted text file. Its time for a change.
>>46803885
>http://www.passwordstore.org/
nice
>>46803740
>>46803863
>>46803922
But GPG-encrypted text files are objectively better. Why are you downgrading?
They're all saved in my SeaMonkey profile.
>>46803961
Ummm, dunno. Is it really a downgrade?
>>46804010
If you have to ask, never mind. Just use KeePass like the rest of the botnet, good goy.
Better sync it to the cloud as well for better safety. :^)
>>46797291
KeePassX
>>46803961
Keepass removes the passwords from memory after a few seconds, it's also encrypted while in memory.
>>46803295
This is why XKCD is full of shit
The "hard to guess" password would take 0 effort to break with a dictionary attack
>>46804037
Fuck. Since you put it like that.
>>46804100
>beating the dead horse.jpg
I just use three different passwords
>>46804108
>beating the dead horse battery staple.jpg
ftfy
>>46804125
kek
>>46804108
reporting them to peta, don't worry anon
>>46804084
Have you audited KeePass' security? Across platforms, too?
I would trust GnuPG with my life. Tell me, anon. Would you trust KeePass with your life?
>>46797646
Yeah https://github.com/zeapo/Android-Password-Store
>>46804125
A+
>>46797413
>I Like Dogs
>4I8like16dogs8
>4Iik6Ds8
>Ciphertext
All you literally have to memorize is the first step.
>git gud
