.

Password Managers

<<

Svenxix

Newbie
Newbie

Posts: 17

Joined: Thu Dec 31, 2009 10:58 pm

Post Sat Jan 02, 2010 3:13 am

Password Managers

I have been frustrated with the amount of passwords that I have to memorize and I am looking into using a password manager. However, I am a little hesitant to put all of my passwords into one place. If it ever gets compromised I would be in a lot of trouble. Any opinions?
<<

h0les

Newbie
Newbie

Posts: 19

Joined: Thu Jun 18, 2009 2:07 am

Post Sat Jan 02, 2010 8:21 am

Re: Password Managers

passwordsafe + yubikey provides that extra layer of security
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Sat Jan 02, 2010 11:05 am

Re: Password Managers

Verisign has an offering as well:

https://pip.verisignlabs.com/
<<

Data_Raid

User avatar

Full Member
Full Member

Posts: 165

Joined: Fri Nov 09, 2007 5:55 am

Post Mon Jan 04, 2010 4:15 am

Re: Password Managers

Here are a few more password managers that have been mentioned in other forums:
http://keepass.info/
http://passwordsafe.sourceforge.net/

I don't use any password manager personally, I'm guessing that they provide no protecton against dictionary/brute force attacks. Maybe you could use a password manager along with TrueCrypt for an extra layer of protection or possibly IronKey (which provides protection against password attacks), downside is if you lose it: https://www.ironkey.com/demo-enterprise
All men by nature desire knowledge.

Aristotle
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Mon Jan 04, 2010 4:33 pm

Re: Password Managers

I use passwordsafe at work, and keepass at home. Both programs are nice, later this year, I might start migrating work to Keepass (unlike passwordsafe it works on every OS we use).

I would keep the passwords to the safe copied down somewhere. I've lost some passwords because I couldn't remember the password I used for the safe. I recommend your wallet, firesafe, or a safety deposit box depending on how paranoid you are. :)

As Data_Raid said, if they get the file, they might be able to brute force it.

Something else you might do, to spread the pain of a compromise, is to use different safes (files) with passwords to different things in them.
OSWP, Sec+

Return to Other

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software