Anyone Use a Password Manager?

[char]

I am looking to beef up my protection of my ID and want to use harder passwords, but I know that I will forget them if they are complicated, not used frequently and different on every website.

I utilize a few different computers throughout the day, not sure how these programs work..

I was looking at KeePass, but I have no idea what to look for in these applications.

Good idea? Bad idea to secure all of the passwords with one master password?

[liv2ski]

No clue, I have all of mine (50+) written down in the middle of a nondescript tablet. Why put passwords on a computer to get hacked????

[char]

No clue, I have all of mine (50+) written down in the middle of a nondescript tablet. Why put passwords on a computer to get hacked????

Because I would need to carry around the tablet of paper with me. Which I could misplace, or have stolen, etc.

KeePass is encrypted.

[wooley12]

Snowden says to use a phrase. Even better I read, is one that is totally random but easy to remember. Like " sport4nun2&dog". Don't use that.

[Flyoverland Captive]

Every website has different rules about passwords; some allow caps, some don't, some require symbols, some don't, etc. I have spreadsheet kept on an un-networked laptop for all mine (between work and personal, around 80).

Seems a password manager just means one good hack and they're all vulnerable.

[char]

Yeah, thats my thinking, but it seems to be the "security experts" recommendation that you use one of these things. The nice part is I would remember one difficult password and then it would generate random passwords for different accounts. Then store the encrypted passwords on an USB drive that isn't connected full time, portable, etc.

Seems better than a excel file full of unencrypted passwords.

[Art Shirk]

Keepass is good but LastPass is a better user experience and links to sites automatically. Basically like a single sign on tool.

[iceman]

Snowden says to use a phrase. Even better I read, is one that is totally random but easy to remember. Like " sport4nun2&dog". Don't use that.

Dude, I just emptied your retirement account.

[wooley12]

Enough for two nights at the Taj in Joisey. Honor bar will be on you.

[RShea]

The only 2 ways to do it are: use passwords that are phrases with special characters replacing some of the letters- such as "a" is replaced with @, small "L" becomes ! etc. and then record them in some form of encrypted file format (that requires it's own password)- no plain text, no post-it notes, USB thumb drive or similar would work- IF YOU ARE THE TYPE THAT WILL NOT LOOSE the device. Some stick a file up in the cloud- secured and not carry something around with you.

Otherwise take a look at the password managers- RoboForm, Lastpass, KeePass and a few others offer the flexibility of being a great help, encryption and not having to worry as much about the "rules" - upper and lower case, min of x characters, and allow strong password secured for each site and unique passwords.

http://lifehacker.com/5529133/five-b...sword-managers

[Below Zero]

I started using LastPass about a year ago and love it! Makes my online experience so much easier!

[Coño Frío]

I started using LastPass about a year ago and love it! Makes my online experience so much easier!

^ What BZ said minus 9 months. LastPass also has a password generator which creates, encrypts, and stores, a super-string of gobbledygoook that you probably couldn't type in correctly even if you were looking at it on a post-it. The only weak link is the master password to LastPass

[Pegleg]

How would a password manager like LastPass work with a financial aggregator like Mint? Mint needs to know all of my passwords for financial accounts so that it can update my information, but if LastPass is creating new passwords all the time then wouldn't Mint be constantly unable to access those accounts? Anyone use both?

[char]

How would a password manager like LastPass work with a financial aggregator like Mint? Mint needs to know all of my passwords for financial accounts so that it can update my information, but if LastPass is creating new passwords all the time then wouldn't Mint be constantly unable to access those accounts? Anyone use both?

I don't think these password managers are creating new passwords all of the time. When you reset or initially input a password then they can create strong random passwords for you, which they then store. You can view the password characters provided you have the master password. So you would be able to input it into Mint.

[sherpahigh]

I started using 1Password recently and love it. I have access on my work comp, home and iphone. From my research it was highly recommended and very secure.

[skimaxpower]

1password is fantastic. Worth every penny!

[Pegleg]

I don't think these password managers are creating new passwords all of the time. When you reset or initially input a password then they can create strong random passwords for you, which they then store. You can view the password characters provided you have the master password. So you would be able to input it into Mint.

Ah, thanks. I thought they regularly generated new passwords, since the expert advice is to change your passwords regularly. Seems like that would make for a better product, though it would cause the complication I mentioned regarding aggregators.

[macmahoooon]

I am looking to beef up my protection of my ID and want to use harder passwords, but I know that I will forget them if they are complicated, not used frequently and different on every website.

I utilize a few different computers throughout the day, not sure how these programs work..

I was looking at KeePass, but I have no idea what to look for in these applications.

Good idea? Bad idea to secure all of the passwords with one master password?

Been using KeePass for a few years now and very happy with it. Advantage is you can get clients for most mobile OS as well and store the DB in Google Drive so you always have access to them

[MMP]

I use Dashlane. It works great and across all of my devices. Easy to use secure password generation. Accessed by one password.

https://www.dashlane.com/

[ex-powderbroker]

1password for OSX is legit.

[PB]

I used a retinal scanner, but then somebody stole my eyeball.

- Det. John Anderson

[rod9301]

Keypass on my computers, and android phone.
I keep their file on dropbox, so all devices sync automatically.

[lanternerouge]

as been said, 1password works great. Multi platform.

[fool]

The only 2 ways to do it are: use passwords that are phrases with special characters replacing some of the letters- such as "a" is replaced with @, small "L" becomes ! etc. and then record them in some form of encrypted file format (that requires it's own password)- no plain text, no post-it notes, USB thumb drive or similar would work- IF YOU ARE THE TYPE THAT WILL NOT LOOSE the device. Some stick a file up in the cloud- secured and not carry something around with you.

Otherwise take a look at the password managers- RoboForm, Lastpass, KeePass and a few others offer the flexibility of being a great help, encryption and not having to worry as much about the "rules" - upper and lower case, min of x characters, and allow strong password secured for each site and unique passwords.

http://lifehacker.com/5529133/five-b...sword-managers

I was going to post the same article: good, solid writeup by LH. I just started using LastPass and like it.

[RShea]

Ah, thanks. I thought they regularly generated new passwords, since the expert advice is to change your passwords regularly. Seems like that would make for a better product, though it would cause the complication I mentioned regarding aggregators.

You initiate the change and then go to the other apps like Mint to change. Just like changing your email password then having to update the password on your phone to get the messages.