OK, I’m starting to get repetitive with these password posts, but I promised in my last post that I would mention some ways to keep track of all your passwords.
As you probably know already, the less places you share your passwords between, the more secure you are. So, the most secure way to manage passwords is to never repeat them. So, if you have accounts on 15 different websites, and 5 different computers, and you have security in mind, you should have twenty different passwords you use on a regular or occasional basis, and you should be changing those passwords regularly (hopefully quarterly, or semi-annually at least).
At best, I think I can probably keep track of around 8-10 passwords at a time, and even then I start to confuse them, and have to try a few passwords on some sites before I get it right. I hold very little hope of remembering 20 passwords for very long. In fact, between personal and work-related accounts, I probably have closer to 40 or 50 passwords to manage.
So how do I keep track of my passwords? I write them on a yellow Post-It note and tape it to my monitor, of course. That’s secure, isn’t it? Well, if I wanted to be a little more diligent about keeping my passwords secure, I would use a tool such as KeePass Password Safe.
KeePass is a secure database for your passwords. It is also Open Source, and free to download and use. It allows you to create groups for your passwords so you can be more organized, and it also allows you to enter in the address of any website you have an account on, and auto-type the username and password when you load the site. The entire database is encrypted using standard algorithms such as AES, TwoFish, or Rijndael. You can also use either a password, a key file (stored on a USB key or hard drive), or a combination of the two to restrict access to the database.
I highly recommend this tool as a way to keep track of your passwords in a secure manner. And since it’s free, you don’t have to spend any money to try it out and see if it works for you. Check it out here, KeePass Password Safe
John,
using a password manager is not merely convenient, it’s an effective way to adopt better security practices without too much stress. It basically sums up to: 1) never re-use the same password, 2) use strong passwords.
But if you are going to use multiple strong and complex passwords you can’t remember all of them and you definitely need a password manager.
Software products like Keepass are certainly an option, but you could also consider a web based solution.
(Yes, I’m a tad biased …)
Clipperz is an online password manager that can do much more than simply storing your passwords.
- ubiquitous access
- direct login to online services
- offline version
- bookmarklet for quick data entry
- nothing to install or backup
- …
It’s free and completely anonymous.
Clipperz lets you submit confidential information into your browser, but your data are locally encrypted by the browser itself before being uploaded.
The key for the encryption process is a passphrase known only to you.
Clipperz simply hosts your sensitive data in encrypted form and could never actually access the data in its plain form.
For any further information refer to our website:
http://www.clipperz.com.
Marco
Clipperz co-founder
I have been rather hesitant to tackle an web-based password management solution, but based on your description, I think the time has come! I will try it out and report back.