Thread: Those idiot password changes
View Single Post
  #1  
Old June 14th 18, 09:55 AM posted to alt.comp.os.windows-10,alt.windows7.general
Chris
external usenet poster
  
Posts: 832
Default Those idiot password changes
wryutirjgkhmmfioertuyie wrote:
On 6/13/2018 12:36 PM, Chris wrote:

The two products I mentioned (Keepass and enpass) don't use an
online server, so are immune to that type of hack...

The best password managers are ones with encrypted database files
that are stored locally.

But apparently they are not immune to local corruption either:

"KeePass has quite some features to avoid database file corruption"...

..."However, data corruption can still be caused by other programs, the
system or broken storage devices"...

..."KeePass of course can't do anything when the data becomes
corrupted/unreadable at a later point of time"

https://keepass.info/help/base/repair.html

That's why you have back-ups, as others have said. I used Keepass for about
two years using it every day on two computers, one tablet and a phone.
Syncing was reliable and I had no errors in that time.

Since then, I've used enpass for about two years with the same experience.

Dunno. That sounds a bit scary to me. I can't imagine the problems I'd
have if I lost all my passwords in one crash and couldn't log in
anymore. Also I'd be nervous about putting all my passwords in some
strange software's hands. Who knows for sure what it really does
(paranoia on). YMMV.

Keepass is fully open source and has been verified. Enpass is based on the
open source protects walletx and sqlcypher. I'm not sure if it's been
externally verified.

I just use a simple formula that includes certain place number
characters of the web site intermingled with employee numbers from past
employment. I keep the formula in my head so don't have to write the
full passwords down. It's certainly not 30 character strong but with
two-factor authentication (on the sensitive sites) it's reasonably
secure. YMMV.

I tried that for a while, but some websites weren't compatible with my
algorithm: either too long or unsupported characters (like numbers, duh!).
So I was having to remember multiple algorithms which got tedious or I used
weaker passwords.

With a password manager I needn't worry and I can free up some of my brain
cells



Ads