50 Dumb Passwords You Should Never Use At All
kokopelli
Veteran
Joined: 27 Nov 2017
Gender: Male
Posts: 3,657
Location: amid the sunlight and the dust and the wind
Regarding password managers, I'll have to wait for one that is fully distributed and multiplatform. On any given day, I may sign on with either my primary workstation (a desktop computer running OpenBSD), a server running OpenBSD, a laptop running Linux, or a desktop running Linux. And for some things, my Android cell phone as well.
Also, at times I may need it from a computer running FreeBSD or one of several running NetBSD.
And from most of them, it may be from any one of several accounts.
A password manager that can't distribute the passwords to my accounts on the other computers is useless to me.
Ichinin
Veteran
Joined: 3 Apr 2009
Gender: Male
Posts: 3,653
Location: A cold place with lots of blondes.
The thing is, you are not representative of the security of the world. In general, IT-security sucks, people chose crap passwords and far from everyone use salt when hashing - some don't even know about hashing and store passwords in plain text(!) because their PHP 5 coder/self proclaimed security expert said it was a good idea. That is why pentesters are successful in retrieving like 80% of the passwords when they do their audit.
You can continue to list theoretical examples - that i agree with, but that does not change anything - many corporations still suck at security.
As for PW managers, try 1password. Its webbased so yeah, multiplatform.
_________________
"It is far better to grasp the Universe as it really is than to persist in delusion, however satisfying and reassuring" (Carl Sagan)
kokopelli
Veteran
Joined: 27 Nov 2017
Gender: Male
Posts: 3,657
Location: amid the sunlight and the dust and the wind
The thing is, you are not representative of the security of the world. In general, IT-security sucks, people chose crap passwords and far from everyone use salt when hashing - some don't even know about hashing and store passwords in plain text(!) because their PHP 5 coder/self proclaimed security expert said it was a good idea. That is why pentesters are successful in retrieving like 80% of the passwords when they do their audit.
You can continue to list theoretical examples - that i agree with, but that does not change anything - many corporations still suck at security.
As for PW managers, try 1password. Its webbased so yeah, multiplatform.
Thanks. I'll look into that.
I have run across some that can be installed on a server and accessed from other computers, but haven't tried them.