|
Posted by Ari on October 24, 2007, 6:09 pm
If you were Registered and logged in, you could reply and use other advanced thread options
On Wed, 24 Oct 2007 18:54:08 -0000, AnthonyM wrote:
>>> I am an IT professional and I get the impression that most people currently
>>> take a similar approach to me. If not, what's the best way to manage so many
>>> passwords?
>>
>>> Andy
>>
>> KeePass
>> --
>> "You can't trust code that you did not totally create yourself"
>> Ken Thompson "Reflections on Trusting Trust"http://www.acm.org/classics/sep95/
>
> I use a modified approach to all the solutions mentioned above. Truly
> it doesn't matter if you keep them in an excel file. If they are
> stored somewhere, there is a potential vulnerability.
The level of vulnerability is the question. if you placed KeePass in a
truecrypted container, then placed fake passwords in an "open" Excel
file, you may have the best of the best.
> So I use
> different passwords for every site, and I do store 1/2 of the password
> in a system (I won't endorse a particular one, but I've used several
> methods, Excel, RoboForm, Keepass, UltraSafe). So I put 1/2 of the
> password in the system. I usually do a random generated 8-10
> character key. Then, I memorize a 2nd 1/2 that is a keyphrase. This
> helps me feel secure that even if my method of storing passwords is
> comprimized, they still have to come up with the 2nd half of the
> password that is memorized.
>
> Just a thought.
>
> Anthony Maughan
Depending on the password, that isn't hard to do.
--
"You can't trust code that you did not totally create yourself"
Ken Thompson "Reflections on Trusting Trust"
http://www.acm.org/classics/sep95/
| 
XML site map