I’ve actually come up with a way to have a complex and unique password for each service which is also resilient againt forced password changes, doenst require a password manager, and if Im being tortured I still wont be able to tell them what it is because I dont know it unless Im at the login screen. If the service changes the layout of their login screen though, Im fucked.
I’ve been thinking of starting to use one more and more, is there any you would recommend? Are all the good ones a paid service? And my biggest concern is someone getting into the password manager itself, is that something that I should worry about?
I’ve actually come up with a way to have a complex and unique password for each service which is also resilient againt forced password changes, doenst require a password manager, and if Im being tortured I still wont be able to tell them what it is because I dont know it unless Im at the login screen. If the service changes the layout of their login screen though, Im fucked.
How? 😂
It must be some sort of compression algorithm of the information presented at the log-in screen.
If they change/rebrand the login he’s screwed. Just use a password manager people.
I’ve been thinking of starting to use one more and more, is there any you would recommend? Are all the good ones a paid service? And my biggest concern is someone getting into the password manager itself, is that something that I should worry about?
I like Bitwarden. It’s open source. The Firefox plugin and Android app work great. Also free.
I don’t trust a service for my passwords so I’d rather trust an open-source software.
Try KeePass, it runs both on a PC as well as a phone so just carry your encrypted passwords with you.
Edit: And passwords aren’t enough, use multi-factor for services that offer it. Preferably via an app instead of SMS.
1Password is a solid service if you’re OK with the proprietary aspect. I use it personally and we use it at work (I’m an infosec consultant)