How do you store your passwords?
@fribbledom I can't believe that many people store their passwords in their head! I used to until I was doxed, and now I randomly generate each new password. There's no way I could memorize all of them.
@wim_v12e @Eidon @fribbledom Prefer a randomly generated pad to a JPG, or if a JPG, then the picture it contains should be random (as in "white noise", not as "on a random topic"), otherwise the key may contain periodic patterns and therefore the ciphertext is at risk of being partially cracked using statistical methods.
I have voted for "Texfile"
Key into E-MAIL for remembering.
But more of them into OPERA browser ...has password remembering by itself
@fribbledom that should be a multiple choice question since using a password manager still needs one to store the access password somewhere.
@fribbledom 1Password. And recently I found an older machine where I hadn't 1p'd… took me half an hour to remember/guess the password. NEVER rely on memory for anything. All passwords, notes, whatever, go in the vault.
I can't choose multiple options here, so both password manager, and then a salt addition that is in my head.
@fribbledom I have an arrangement with a group of friends where we tattoo our important passwords onto each others bodies in a place none can see alone.
It's like a physical version of Samirs Secret Sharing Scheme
@fribbledom really depends if I care about my data on the site or not. Financial stuff strictly in my head and usually a complex password too. For the countless trash sites it's something basic with a manager
Once I knew a guy who had his passwords on the road in public view!
Rather than to write them he used the signs of the shops in front of him: "FruttaPino-0123-456789" and so on.
@fribbledom I voted text file as they're in a text file on an encrypted partition which is only mounted when needed. Opened in my normal editor (geany) as a special-purpose user using ssh -X.
@fribbledom I use zx2c4 pass, so, a combination of the last two (it's just encrypted text files in a git repo + tooling)
Professionally, I do something with IT security and we're about to conduct a study regarding PW security. I am eager to see the results... (mid 2021).
It is valid to ask the question of any target group. I'm sure Fediverse users are vastly more tech savvy than the general population, but, 78% still strikes me as high for the password manager option.
My observations of the general population shows most people relying on the browser storing their passwords.
I use a text file, encrypted with GPG, edited with Vim and the gnupg-vim plugin. My passwords are secure, but, available on all the platforms I use.
@fribbledom For financial ones, the password is split between paper and an encrypted text file. Hopefully that means neither a hacker or a burglar can get a useful password.
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!