How do you manage your passwords?

[Kelemvor]

So I'm looking for some sort of website or software or whatever that can manage and encrypt passwords since my current system isn't very secure.

I know someone at work that uses Password Gorilla. I've also heard people mention LastPass.com. I'd love something that is able to sync between multiple PCs but I guess I could do that manually by storing the file on dropbox or something like that (which would make it slightly less secure).

Anyway, just looking for recommendations other than Post-It notes, paper under the keyboard, using the same password for everything, etc.

Thanks.

 

[HamburgerBoy]

I use one password for everything, and ensure that I remember it by using a short word from the dictionary with neither capitalization nor numbers.

Aside from important stuff. Then I use PINS.

 

[MontyAC]

I use LastPass. You can log on at any PC and access your passwords.

 

[AMCRambler]

Password Safe

 

[DrPizza]

I use the brilliant strategy of memorizing all my passwords. I use a system whereby each is different. E.g., my generic password is something like 123boogeypizzaclowncarrots!*

For every site I go to, I insert a few characters between the 123 and boogey. For example, on AT, I could insert AT - but if one password was compromised, someone might figure that out. So, I refined that sytem. Say, instead of AT, I use ZS, since those are each of the letters preceding A and T. That also allows a mix of caps into the password. Thus, hotmail is either 123Gboogey.... (or it's 123GLboogie... depending on whether I add 1 or usually 2, but occasionally 3 or more letters.)

Of course, it's not really 123boogeypizzaclowncarrots - it's something long that my fingers can whip out in about 1 second.

 

[Newbian]

I use the word password as a password.

 

[Red Squirrel]

I used to use a program called "PINs" but it only works in Windows. When I switched to Linux I decided I wanted something web based because I may still want to access my passwords from Windows when I do boot into it. Also makes it easier to access them from work when I VPN into my house.

Could not find any premade software for it so I ended up coding my own. It's rather basic, but it gets the job done. The password is in a text field in plain text but the formatting is set so it cannot be seen. So if someone is looking over my shoulder or something it's not in plain view. I can just then copy and paste it directly into whatever it's going into. Obviously there's the security issue that the password is in clear text in memory in multiple locations by doing this, but it was the simplest approach and for 99% of situations it's fine. It's not like someone is going to sneak on my computer and do a memory dump.




It's encrypted with AES256 into a MySQL Database. The key is actually the password to login to it. Downside with that method is I can't change my password without decrypting and re encrypting with the new password but the upside is if someone was to manage to steal the database it would take a long time to reverse it giving me enough time to go through and change all the passwords.

 

[Mixolydian]

I use 1Password. Uses dropbox to automatically sync my passwords between my Mac, PC, iPhone and iPad.

 

[Imp]

I use 3 passwords in variations with a standardized system easy to memorize.

Then I have my important passwords for bank accounts that are just insane and all written down on paper. No way you can even begin to guess those.

 

[Crono]

All in my head. All my passwords are hard to guess, but based on stuff in my imagination, plus numbers I can remember mixed in. I get confused sometimes as to which password goes for which site, but I usually get it after 1 or 2 attempts. Sometimes I do end up using password recovery, though.

I do remember the passwords for the sites I frequently visit.

 

[theevilsharpie]

KeePass + Dropbox

 

[OlafSicky]

My password is simple for all my stuff 123

 

[Vic Vega]

My brain. My passwords are written/stored nowhere other than the old pink meat.

 

[ringtail]

``

 

[coldmeat]

I just click "forgot my password" a lot.

 

[ViviTheMage]

I hear lastpass is nice, but I just use my head

never, ever, ever plain text it.

 

[Baked]

12345 for all my passwords. Login is different though. Ha!

 

[masteryoda34]

Keepass + Dropbox

 

[bononos]

locknote and lastpass.
locknote is a small app which you can run off a thumb/hard drive without installation which just opens up a built in text file, lastpass for web accessibility.

 

[AznAnarchy99]

I use the same 4-5 passwords. So its probably one of those.

 

[Aikouka]

KeePass + Dropbox.

I use KyPass as my iPhone app to access my database.

 

[Lonbjerg]

My brain...it's a VERY simple memorytask...ffs...LOL

 

[MrColin]

I memorize mine and they are synthesized from a stock mix of alphanumerics, spaces, and the type/name of the service. Occaisionally, I encounter a service which objects to the length or certain characters (usually spaces). I sometimes find myself writing to service providers about how stupid their guidelines are, and how they make the service less secure, it never helps as far as I can tell.

 

[lxskllr]

I keep them in my head. I'm leery of of using automated, and centralized tech solutions. It promotes laziness, and puts EVERYTHING in a single failure point. Every so often I look at a password manager, but so far I haven't bitten.

 

[Oyeve]

At work I use password safe for all of my it needs. My personal password are one of three that I have been using for over 25 years.