I rely on Bitwarden (slooowly migrating from... a spreadsheet...) and am thinking of keeping a master backup to be SyncThing-synchronized across all my devices, but I'm not sure of how to secure the SyncThing-synchronized files' local access if any one of my Windows or Android units got stolen and somehow cracked into or something. I'm curious about how others handle theirs. Thanks in advance for sharing!

(page 2) 12 comments

sorted by: hot top controversial new old

[–] Entertainmeonly@lemmy.blahaj.zone 1 points 7 months ago (3 children)

I don't really understand why passwords are so hard. Take two words that have meaning to you. Two number sequences that are important. Then lastly decide on two symbols. That's eight different passwords if you use one of each in that order, more if you want to mix the order. Now set rules to each. One word for personal one for business. One number set for fun the other for essential. The symbols are rather arbitrary but I try and stick with one for passwords I'm forced to make the other for passwords and logins I'm wanting to make. Obviously make unique passwords for any important stuff like baking and such but with this method I can log into accounts over ten years old within the first two tries. Usually it's the user name or tag that gives me the real trouble.

load more comments (3 replies)

[–] fafff@lemmy.ml 1 points 7 months ago (1 children)

passwords.txt on a full-disk encryption HDD.

[–] Dymonika 1 points 7 months ago (2 children)

What if the HDD catches on fire or the room gets flooded while you're not home?

[–] fafff@lemmy.ml 1 points 7 months ago (2 children)

I backup stuff both on a MicroSD and on web storage with duplicity. Hopefully that is enough!

load more comments (2 replies)

load more comments (1 replies)

[–] CCRhode@lemmy.ml 1 points 7 months ago

I'm agnostic about password managers, and I'm agnostic about sync'ing password repositories between devices. I believe there would be grave risks of losing access to my own repositories by misplacing their pass-phrases or bungling other kinds of authentication. I try not to put anything on portable devices that is super confidential. On the other hand, I restrict physical access to my desktop computer. I back it up continually, power it from an uninterruptible power supply, and run only a handful of server-side processes there. ... so I feel safe ... sort of.

I suppose it may seem heretical to members of this community, but I put all my passwords in a plain-text *.csv file on my desktop machine that I maintain with my own python script.

[–] Manalith@midwest.social 1 points 7 months ago (1 children)

I was using Bitwarden up until I moved my email service to Proton. Now, I just use all their things, but I didn't have any issues with Bitwarden personal. I do have some issues with their organization accounts though.

[–] Dymonika 1 points 7 months ago* (last edited 7 months ago) (1 children)

I do have some issues with their organization accounts though.

Like what? And is Proton Pass open-source?

[–] Manalith@midwest.social 1 points 6 months ago

Just management things, they don't do nested permissions, removed the ability to have groups auto added to collections and the desktop app has been broken for creating new entries in an organization because it can't for some reason it can't see collections, but that's something that broke in an update and they just haven't fixed for a few versions.

load more comments