Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
General Security Discussions
Password manager: Question is simply - why did you choose the one you are using now?
Message
<blockquote data-quote="valvaris" data-source="post: 949871" data-attributes="member: 38787"><p>I do not see the purpose for something like this in times of 2FA/MFA/OTP - You do not need to store these information's inside a Password Manager use a YubiKey instead or other stuff Like a Authenticator for your Smartphone that uses Cloud Backup just in case.</p><p></p><p>The double blind just defeats the purpose of two-factor authentication and since people are trying to take a easy way - We then tend to use something like:</p><p>-FirstName</p><p>-KidsName</p><p>-Birthdate</p><p>-PIN / CVC</p><p>To remember stuff easy.</p><p></p><p>So the basics in Password Security is to have the following:</p><p>- Who you are - Password Manager</p><p>- What you know - Password Manager</p><p>- What you have - Authenticator</p><p></p><p>To come to a point if you do not trust your Password Manager to keep your information safe - Then it is like lots of things in life "TRUST"</p><p>For me as an example:</p><p>I Trusted 1Password and have to say great service - But it came down to - Were is my Data - How expensive is the Service per year and is it really that secure?</p><p></p><p>I choose to go to BitWarden because even as a private person I can use the Self-Hosted service - Move it to a Datacenter I trust - Build a Secure Tunnel (Site to Site VPN) - Everything else is like OTP and stuff is in my Phone and I only Trust Sites that use some way of Two-Factor-Authentication - Everything else gets a generic E-Mail - Password mix with a Trashmail Address from <a href="https://www.mailinator.com/" target="_blank">Mailinator</a> </p><p></p><p>Otherwise it just defeats the purpose of a Password Manager in terms of Super Strong Passwords and ease of use. <img src="data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7" class="smilie smilie--sprite smilie--sprite116" alt=":D" title="Big grin :D" loading="lazy" data-shortname=":D" /></p><p></p><p>Sincerely</p><p>Val.</p></blockquote><p></p>
[QUOTE="valvaris, post: 949871, member: 38787"] I do not see the purpose for something like this in times of 2FA/MFA/OTP - You do not need to store these information's inside a Password Manager use a YubiKey instead or other stuff Like a Authenticator for your Smartphone that uses Cloud Backup just in case. The double blind just defeats the purpose of two-factor authentication and since people are trying to take a easy way - We then tend to use something like: -FirstName -KidsName -Birthdate -PIN / CVC To remember stuff easy. So the basics in Password Security is to have the following: - Who you are - Password Manager - What you know - Password Manager - What you have - Authenticator To come to a point if you do not trust your Password Manager to keep your information safe - Then it is like lots of things in life "TRUST" For me as an example: I Trusted 1Password and have to say great service - But it came down to - Were is my Data - How expensive is the Service per year and is it really that secure? I choose to go to BitWarden because even as a private person I can use the Self-Hosted service - Move it to a Datacenter I trust - Build a Secure Tunnel (Site to Site VPN) - Everything else is like OTP and stuff is in my Phone and I only Trust Sites that use some way of Two-Factor-Authentication - Everything else gets a generic E-Mail - Password mix with a Trashmail Address from [URL="https://www.mailinator.com/"]Mailinator[/URL] Otherwise it just defeats the purpose of a Password Manager in terms of Super Strong Passwords and ease of use. :D Sincerely Val. [/QUOTE]
Insert quotes…
Verification
Post reply
Top