this post was submitted on 22 Apr 2024
28 points (100.0% liked)

Open Source

822 readers
4 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
28
How do you handle your passwords? (self.opensource)
submitted 7 months ago by Dymonika to c/opensource@lemmy.ml
62 comments fedilink hide all child comments
 

I rely on Bitwarden (slooowly migrating from... a spreadsheet...) and am thinking of keeping a master backup to be SyncThing-synchronized across all my devices, but I'm not sure of how to secure the SyncThing-synchronized files' local access if any one of my Windows or Android units got stolen and somehow cracked into or something. I'm curious about how others handle theirs. Thanks in advance for sharing!

you are viewing a single comment's thread
view the rest of the comments
[–] Entertainmeonly@lemmy.blahaj.zone 1 points 7 months ago (3 children)

I don't really understand why passwords are so hard. Take two words that have meaning to you. Two number sequences that are important. Then lastly decide on two symbols. That's eight different passwords if you use one of each in that order, more if you want to mix the order. Now set rules to each. One word for personal one for business. One number set for fun the other for essential. The symbols are rather arbitrary but I try and stick with one for passwords I'm forced to make the other for passwords and logins I'm wanting to make. Obviously make unique passwords for any important stuff like baking and such but with this method I can log into accounts over ten years old within the first two tries. Usually it's the user name or tag that gives me the real trouble.

[–] lud@lemm.ee 8 points 7 months ago

You entire system could be compromised quite quickly if someone figures out the pattern. It's also susceptible to hybrid attacks.

[–] Imprint9816@lemmy.dbzer0.com 6 points 7 months ago* (last edited 7 months ago)

Or just generate a random series of 5 words (through bitwarden) separated by the character of your choice and have a much better password that's relatively easy to memorize.

Relevant xkcd

[–] InputZero@lemmy.ml 2 points 7 months ago

This might have been acceptable 20 years ago but it's not a strong enough policy today. Data theft happens all the time and it's in the interests of a company who's security has been breached to not tell you that your data has been taken. You should assume that at anytime someone has several examples of your login credentials, not just one. You should use a password manager that isn't Chrome, Firefox, Safari, ect.