• Cethin@lemmy.zip
      link
      fedilink
      English
      arrow-up
      6
      ·
      edit-2
      1 year ago

      Use a password manager. The fact you use the same password on every site is very disturbing.

      KeepassXC (KeepassDX on android, I don’t know what I apple option is) is a good free open source option.

      • LifeInOregon@lemmy.world
        link
        fedilink
        arrow-up
        5
        ·
        1 year ago

        iOS and macOS have a built in password generator and storage system that are encrypted. It also works with passkeys. Surprisingly, there are people (even people I’ve explained this to) who don’t use it and continue to use a single password everywhere. ¯\_(ツ)_/¯

      • can
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        How does that compare to Bitwarden?

        • Cethin@lemmy.zip
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          I haven’t used Bitwarden so I don’t know. It’s totally free though and stored locally. The only issue with this approach (which is much more secure) is there’s no built in syncing between devices. It’s fairly easy to do with Synchthing though so it’s not an issue.

          It can do everything you want a password manager can do. You can generate passwords, have notes and add other fields to entries (so you can store things like security question answers in it too, which you should generate a password for not answer with a real answer). It can connect to your browser with plug-ins for autofill/auto-generate. It has folders for grouping entries. Basically, there’s no feature I can think of that would be useful that it doesn’t have.

          • psud@lemmy.world
            link
            fedilink
            arrow-up
            3
            ·
            1 year ago

            You can store it in the cloud, for example on a Google drive. Desktop KeePass has an extension that lets it use cloud storage, KeePass2Android either has cloud built in our can access Google drive via Android systems

            • Cethin@lemmy.zip
              link
              fedilink
              English
              arrow-up
              2
              ·
              1 year ago

              You can, but it isn’t the default. You have total control over the database is the point. You can do whatever you want with it from there.

              • psud@lemmy.world
                link
                fedilink
                arrow-up
                3
                ·
                1 year ago

                Yep, I just thought it good to call or specifically that it works in the cloud as many users want that

        • Cethin@lemmy.zip
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          edit-2
          1 year ago

          Just use a password manager. It’s super easy to get started with it and you’ll only need to know one password, so make it a very good one. I’m certain yours could be brute forced, especially since I know it’s now Lemmy with a “.” somewhere, probably using words so throw a dictionary attack at it and it’s probably easy.

      • psud@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        It’s a shame KeePass doesn’t have a setting to generate an IBM mainframe password. Those rules are hard to implement in the standard set of settings

    • psud@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      I like $ and # as chars to put as the mandatory special when the requirements are hard to find