- My Forums
- Tiger Rant
- LSU Recruiting
- SEC Rant
- Saints Talk
- Pelicans Talk
- More Sports Board
- Winter Olympics
- Fantasy Sports
- Golf Board
- Soccer Board
- O-T Lounge
- Tech Board
- Home/Garden Board
- Outdoor Board
- Health/Fitness Board
- Movie/TV Board
- Book Board
- Music Board
- Political Talk
- Money Talk
- Fark Board
- Gaming Board
- Travel Board
- Food/Drink Board
- Ticket Exchange
- TD Help Board
Customize My Forums- View All Forums
- Show Left Links
- Topic Sort Options
- Trending Topics
- Recent Topics
- Active Topics
Started By
Message
1
Posted on 12/31/25 at 11:31 am to RanchoLaPuerto
I found one of those books on the side of the road one time. That's why it's riskier.
Posted on 12/31/25 at 11:31 am to RanchoLaPuerto
You do you...
For me I keep a local password vault, the database is encrypted and lives on an encrypted volume.... only accessible on my network (or via a private VPN).
My family is so hosed if I get dead.
For me I keep a local password vault, the database is encrypted and lives on an encrypted volume.... only accessible on my network (or via a private VPN).
My family is so hosed if I get dead.
Posted on 12/31/25 at 11:34 am to LemmyLives
quote:
Using a password manager
I want one of these but I know nothing about them so I have just kept pushing it off
If anyone has any recs, I d love to hear them
Posted on 12/31/25 at 11:41 am to RanchoLaPuerto
quote:
I keep my passwords in a non-descript booklet that I pretty much keep with me at all times.
Posted on 12/31/25 at 12:19 pm to LanierSpots
quote:
If anyone has any recs, I d love to hear them
Keepass, Bitwarden, even Apple Passwords app is really good if you're in that platform.
Posted on 12/31/25 at 12:23 pm to 3deadtrolls
I could cut and paste but from memory the 2025 NIST guidelines are something like this:
stop with the mandatory pwd resets every 6 months or whatever.
stop with the special characters requirements
use pass phrases preferably at least 15 characters long
and of course 2FA at a minimum.
feel free to correct me.
stop with the mandatory pwd resets every 6 months or whatever.
stop with the special characters requirements
use pass phrases preferably at least 15 characters long
and of course 2FA at a minimum.
feel free to correct me.
Posted on 12/31/25 at 12:26 pm to 3deadtrolls
quote:
Keepass, Bitwarden, even Apple Passwords app is really good if you're in that platform.
I am using the Apple password app now. But I’m not really doing anything except letting it keep my passwords. From what I understand, some of the other apps have more advantages.
Posted on 12/31/25 at 1:04 pm to RanchoLaPuerto
My phone was stolen in Las Vegas and I had get a new one. Trying to restore from the cloud is a bitch. Trying to sign in with 2 factor authentication and both apps are signed out is a bigger bitch. They get in a loop where nothing can happen. Passwords are on a pc at home, with Dropbox, but the Dropbox app on the phone is signed out. You can’t get there from here
Posted on 12/31/25 at 3:56 pm to RanchoLaPuerto
Technically yes. You just need to create a PIA password with special characters, numbers, uppercase/lowercase. Like one that you would hate so much because its so complicated.
I have never received a phishing attempt to get a 1password out of me.
I have never received a phishing attempt to get a 1password out of me.
Posted on 12/31/25 at 4:58 pm to RanchoLaPuerto
quote:
Only I can read my handwriting
I can come back to something I wrote six months ago and not be able to read it.
Posted on 12/31/25 at 6:23 pm to RanchoLaPuerto
Yo...
Couple of thoughts from far too much experience in the field
- PW managers are cool, use the one built into Google, Windows, or Apple and let them generate the random pw for you.
- Use 2FA when ever offered. as noted earlier, it is a essentially a new pw each time
- Use PassKeys when offered. It is the new gold standard for MFA and slick user experience. the site/service you are using has to offer them. Removed the PW from the equation
- it is OK to write down passwords (for example the master PW for apple, google, PW manager, etc....). I would NOT carry with you.
Leave it in a desk drawer at your house in an envelope. If they break in to steal that, it is either A. Game over already for you or B. you have some crazy stuff you do online
Couple of thoughts from far too much experience in the field
- PW managers are cool, use the one built into Google, Windows, or Apple and let them generate the random pw for you.
- Use 2FA when ever offered. as noted earlier, it is a essentially a new pw each time
- Use PassKeys when offered. It is the new gold standard for MFA and slick user experience. the site/service you are using has to offer them. Removed the PW from the equation
- it is OK to write down passwords (for example the master PW for apple, google, PW manager, etc....). I would NOT carry with you.
Leave it in a desk drawer at your house in an envelope. If they break in to steal that, it is either A. Game over already for you or B. you have some crazy stuff you do online
Posted on 12/31/25 at 7:17 pm to RanchoLaPuerto
so 123Abc! isn't a good password?
Posted on 12/31/25 at 7:28 pm to RanchoLaPuerto
I keep a password journal that Is either on my home office desk or in my backpack when I travel. I record mnemonics for my passwords. Like if my password is Getmon3y! I write Gm3! I know what the G and m stands for. If it's a stupid website that requires a password like a car loan my password would be Get$ubaru or H1toyota! And I would write down G$! or H1t! And I know what that means.
Posted on 12/31/25 at 7:32 pm to greenbean
quote:
so 123Abc! isn't a good password?
This. I just use the same password for everything. That way, I only have to remember one password. Turn off that 2FA crap as well, when possible.
Posted on 12/31/25 at 8:01 pm to RanchoLaPuerto
Man, just go ahead and implement 2-factor authentication….or better yet, passkeys for all of your accounts.
Posted on 1/1/26 at 1:24 pm to LemmyLives
quote:
The guy was right. Using a password manager, you can have 1,000 passwords that are completely random, and 30 characters long, and have them auto-filled.
I wouldn't steal your password book, I'd borrow it, take pictures of it, and put it back before you noticed
So what if the password manager gets hacked? You give access to everything in " one fell swoop".
Posted on 1/1/26 at 1:43 pm to Joshjrn
quote:
If you have two factor on everything, it doesn't really matter either way. If someone takes control of your second factor, they can likely "recover" the account without the password, regardless.
It's why two factor is pushed so heavily by enterprise security.
Yep, at work I have to go through the two factor even to just check my email. We use it for everything we do on the computer though I imagine that's pretty common nowadays
Posted on 1/1/26 at 1:55 pm to KWL85
quote:
So what if the password manager gets hacked? You give access to everything in " one fell swoop".
They're encrypted client side (on my device), not in the cloud, so they can steal the encrypted data all they want, and spend years decrypting the file. The cloud provider *can't* see my passwords, which all look something like this: kN1KcvX#wd3H$HC2%rhVX. Although, there are still sites which don't allow for a lot of complexity, and make me do dumb shite like create a password *only* between 8-12 characters, but they'll breach my data first, before my password store gets hacked and decrypted.
And, most password managers can auto-change passwords en-masse and auto update them. And, most password managers also alert you if any of your login/password combos have showed up on the dark web so you can change them.
In addition, password managers like KeePass give you a local only option:
quote:
Database cloud backup
KeePassXC is local-first and will not automatically back up your password database in the cloud. This can be both an advantage for security and privacy, and a disadvantage if something were to happen to your device.
To prevent losing access to your passwords, it is recommended to regularly back up your encrypted database .kdbx file in a remote cloud storage of your choice, or on an encrypted external drive or USB stick.
When copying this file to a third-party cloud service, it will remain fully encrypted and only get decrypted locally on your device.
Posted on 1/1/26 at 2:01 pm to greenbean
quote:
so 123Abc! isn't a good password?
No, but !cba321 has always done the job for me.
Page 2 of 3
Popular
Back to top
Follow TigerDroppings for LSU Football News