I'm all for learning, but I can't wait to get where you guys are at before I start using it...
It's good that you're all for learning, I don't get what you mean by using "it"
Um, my new MacBook...
but if you want to become a security expert you're in for a long an frustrating journey. You should attempt to incorporate the things you learn in real practice, in labs, in your day job, and applications in general. Expect to spend your time reading books, blogs, watching videos and listening to fantastic podcasts.
My goal is not to become a security expert by living.
My goal was (and still is) trying to have better security and privacy for my personal laptop and this new MacBook I am buying to manage my website. (There's a difference between that and what you are saying...)
People have created tools to help you, but you should also know how these tools work. I'd recommend getting a book towards the basics of the things you want to learn, that book AJ has suggested looks like it'd set you up for an awesome read and some insightful information.
And I would like to read such a book, and maybe someday even become a seasoned security expert like many of you.
But my immediate need is learn *enough* to have a reasonably secure setup for managing my website while I am traveling, and then to get my damn website finished!!!
(I won't need ANY security if I never buy a new MacBook and never have a website up on the Internet to conduct business?! That comes before the book...)
Trust me, I'd love to go off and spend 6-12 months reading and testing, but I have limited resources, i.e. only one of me and way behind schedule, so I am trying to do the best I can.
When it comes to passwords I remember everything in my head, but you should try to not use the same password, tools like 1Password are great, because you can have it with you on the go, but if the device you're storing it on is compromised then you're in for a world of hurt. On that note, I will start using 1Password because I have locked myself out a few times because I can't remember which specific password I have used for things like twitter/work
Is it a sin to use the same Username across accounts?
For example, if I used the same username for my Mac's FDE and say WiTopia, would that be a sin?
And how "strong" must a Username be?
Can it be as simple as "TomTees" and then I invest the effort in a long and complex Pass-Phrase?
And how fancy do I have to get with my WiTopia account?
They require an Account Username/Password, plus a WiTopia Client Username/Password, and I think they encourage people to just use their e-mail...
Here is a good example of where I'm unsure of what to do?
Do I just use my Email for both?
Do I come up with something basic like "TomTees" for each?
Must they be different?
And to be blunt, how crazy do I have to get with WiTopia? (I mean, do I have to secure it as much as say my FDE?)
I'm trying to create a *balance* on this topic, but not sure where that might be...