Join Early Retirement Today
Reply
 
Thread Tools Search this Thread Display Modes
Old 09-09-2016, 12:50 PM   #21
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Chuckanut's Avatar
 
Join Date: Aug 2011
Location: West of the Mississippi
Posts: 6,152
Here's one person's view on Lastpass. Search for 'Even the ipad' to get close to the starting point.

https://www.grc.com/sn/sn-256.htm
__________________

__________________
The worst decisions are usually made in times of anger and impatience.
Chuckanut is offline   Reply With Quote
Join the #1 Early Retirement and Financial Independence Forum Today - It's Totally Free!

Are you planning to be financially independent as early as possible so you can live life on your own terms? Discuss successful investing strategies, asset allocation models, tax strategies and other related topics in our online forum community. Our members range from young folks just starting their journey to financial independence, military retirees and even multimillionaires. No matter where you fit in you'll find that Early-Retirement.org is a great community to join. Best of all it's totally FREE!

You are currently viewing our boards as a guest so you have limited access to our community. Please take the time to register and you will gain a lot of great new features including; the ability to participate in discussions, network with our members, see fewer ads, upload photographs, create a retirement blog, send private messages and so much, much more!

Old 09-09-2016, 01:53 PM   #22
Thinks s/he gets paid by the post
Sunset's Avatar
 
Join Date: Jul 2014
Location: Chicago
Posts: 4,333
Quote:
Originally Posted by upset264 View Post
I keep everything in an Excel spreadsheet that is password protected. Even then I use *** for some of the characters that I know for sure.
I had used this too a number of years ago, and then I forgot the password

I spent a couple of days trying to remember it, then I downloaded a hacker program told it to start with the minimum number of characters I would have used and set it running.

In 2 days it cracked the Excel password and I could use my spreadsheet of passwords.

Then of course I worried what if someone ever stole my laptop
__________________

__________________
Sunset is offline   Reply With Quote
Old 09-09-2016, 05:19 PM   #23
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Lsbcal's Avatar
 
Join Date: May 2006
Location: west coast, hi there!
Posts: 5,531
Quote:
Originally Posted by Sunset View Post
...
In 2 days it cracked the Excel password and I could use my spreadsheet of passwords.

Then of course I worried what if someone ever stole my laptop
I am guessing that your password was not many characters long and did not contain some of these: numbers, special characters, and caps. Also one would not want to use words in a dictionary.

I've used the Excel spreadsheet in the past too. My password was 15 characters with some of those constraints mentioned above. I doubt any hacker program could crack it in under many many years.

Anyway, I still like Lastpass (or some other password manager) because it is so easy to set up and use. A smart way to keep your master password is imperative.
__________________
Lsbcal is offline   Reply With Quote
Old 09-09-2016, 05:21 PM   #24
Thinks s/he gets paid by the post
 
Join Date: Sep 2012
Location: Seattle
Posts: 2,883
I use the last six digits of PI
__________________
Fermion is offline   Reply With Quote
Old 09-09-2016, 05:25 PM   #25
Thinks s/he gets paid by the post
Car-Guy's Avatar
 
Join Date: Aug 2013
Location: Citizen of Texas
Posts: 2,369
Excel spreadsheet. Password protected and encrypted w/TrueCrypt
__________________
Car-Guy is online now   Reply With Quote
Old 09-09-2016, 05:26 PM   #26
Thinks s/he gets paid by the post
Car-Guy's Avatar
 
Join Date: Aug 2013
Location: Citizen of Texas
Posts: 2,369
Quote:
Originally Posted by Fermion View Post
I use the last six digits of PI

__________________
Car-Guy is online now   Reply With Quote
Old 09-09-2016, 09:57 PM   #27
Thinks s/he gets paid by the post
Sunset's Avatar
 
Join Date: Jul 2014
Location: Chicago
Posts: 4,333
Quote:
Originally Posted by Car-Guy View Post
Excel spreadsheet. Password protected and encrypted w/TrueCrypt
For my travel laptop, I now use a password manger within TrueCrypt, and keep all the extra files I create within the TrueCrypt as well.
__________________
Sunset is offline   Reply With Quote
Old 09-09-2016, 10:12 PM   #28
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Lsbcal's Avatar
 
Join Date: May 2006
Location: west coast, hi there!
Posts: 5,531
Truecrpt is apparently not supported anymore. See Wikipedia on it.
__________________
Lsbcal is offline   Reply With Quote
Old 09-09-2016, 10:31 PM   #29
Thinks s/he gets paid by the post
Sunset's Avatar
 
Join Date: Jul 2014
Location: Chicago
Posts: 4,333
Quote:
Originally Posted by Lsbcal View Post
Truecrpt is apparently not supported anymore. See Wikipedia on it.
Yep, I don't need support.
But I will look to see if somehow after they spent years perfecting it, maybe someone figured out a global hack to it.

There is one conspiracy theory that the NSA convinced the authors to give it up and claim it was broken because it was so good an encryption.
__________________
Sunset is offline   Reply With Quote
Old 09-09-2016, 11:09 PM   #30
Dryer sheet wannabe
 
Join Date: Feb 2012
Posts: 10
Been using DataGuardian (Koingo Software) for years. Affordable, secure and easy to use.
__________________
MacsNMore is offline   Reply With Quote
Old 09-10-2016, 05:07 AM   #31
Thinks s/he gets paid by the post
target2019's Avatar
 
Join Date: Dec 2008
Posts: 3,640
From the TrueCrypt WIkipedia page:
Though development of TrueCrypt has ceased, an independent audit of TrueCrypt has concluded that no significant flaws are present.
Possibly there are zero-day exploits. If the software is not supported, these will not be readily fixed when found.

Development has stopped because of various legal disputes.
__________________
target2019 is offline   Reply With Quote
Old 09-10-2016, 07:49 AM   #32
Thinks s/he gets paid by the post
gauss's Avatar
 
Join Date: Aug 2011
Posts: 1,667
Quote:
Originally Posted by Fermion View Post
I use the last six digits of PI
:thumbup:

Sent from my LGLS751 using Early Retirement Forum mobile app
__________________
gauss is online now   Reply With Quote
Old 09-10-2016, 09:49 AM   #33
Thinks s/he gets paid by the post
Sunset's Avatar
 
Join Date: Jul 2014
Location: Chicago
Posts: 4,333
Quote:
Originally Posted by target2019 View Post
From the TrueCrypt WIkipedia page:
Though development of TrueCrypt has ceased, an independent audit of TrueCrypt has concluded that no significant flaws are present.
Possibly there are zero-day exploits. If the software is not supported, these will not be readily fixed when found......
So I looked up TrueCrypt and the work has been taken over by VeraCrypt which forked from it and is up to date with with releases ongoing.

I will probably migrate over because you are correct, someone might come up with some hack that will spread far and wide since TrueCrypt is frozen in development.
__________________
Sunset is offline   Reply With Quote
Old 09-10-2016, 09:54 AM   #34
Thinks s/he gets paid by the post
target2019's Avatar
 
Join Date: Dec 2008
Posts: 3,640
Quote:
Originally Posted by Sunset View Post
So I looked up TrueCrypt and the work has been taken over by VeraCrypt which forked from it and is up to date with with releases ongoing.

I will probably migrate over because you are correct, someone might come up with some hack that will spread far and wide since TrueCrypt is frozen in development.
Let us know how you like the forked version.
__________________
target2019 is offline   Reply With Quote
Old 09-11-2016, 04:25 PM   #35
Thinks s/he gets paid by the post
RunningBum's Avatar
 
Join Date: Jun 2007
Posts: 4,765
Passwords are hard enough, now those password recovery questions are getting pretty cruel:


__________________
RunningBum is offline   Reply With Quote
Old 09-11-2016, 05:22 PM   #36
Thinks s/he gets paid by the post
 
Join Date: Jan 2008
Posts: 1,495
Quote:
Originally Posted by Sunset View Post
+1

works on most operating systems and is free, you can put it on a thumb drive to keep it separate from computer and you can make backups easy.
+2 for Keepass

Read this book and you will think twice before storing anything, let alone your passwords, in the cloud again (while also thinking twice about all of your online activity):

https://www.amazon.com/Seventh-Sense.../dp/0316285064
__________________
Options is offline   Reply With Quote
password safety
Old 09-11-2016, 09:20 PM   #37
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
Mulligan's Avatar
 
Join Date: May 2009
Posts: 7,255
password safety

Frank, Dont feel bad... Im a techie Luddite myself... I keep mine on a small spiraled index card notebook. I use my passwords almost everyday and still cant remember them because they are too long and random. I do put some bogus letters on the front and back of the passwords just in case it ever got stolen, so it would just frustrate them. I can barely remember myself which letter and numbers are the bogus ones when I look to use them.
__________________
Mulligan is offline   Reply With Quote
Old 09-11-2016, 09:45 PM   #38
Recycles dryer sheets
 
Join Date: Feb 2014
Location: SF Bay Area
Posts: 247
Quote:
Originally Posted by GalaxyBoy View Post
keepass
+1000
Free. Very safe. More features than you'll ever need. Totally open source, which for security is a good thing. Highest level of encryption. Research it. Get it. Use it.

And as for storing on the cloud...I can agree to some extent that storing on the cloud can have issues, but heck, someone can steal my machine and break in as well. I keep my encrypted keepass DB in the cloud so I have access to it anywhere. The math tells me that they will have to spend a considerable amount of time and effort trying to break the keys. For the amount of work they would have to do to break the cloud security and then the blowfish encryption, well suffice to say it would not be easy....possible yes, but easy no. I don't think they are after the smaller fish.
__________________
FireBug is offline   Reply With Quote
Old 09-11-2016, 09:46 PM   #39
Give me a museum and I'll fill it. (Picasso)
Give me a forum ...
easysurfer's Avatar
 
Join Date: Jun 2008
Posts: 7,750
Quote:
Originally Posted by Mulligan View Post
Frank, Dont feel bad... Im a techie Luddite myself... I keep mine on a small spiraled index card notebook. I use my passwords almost everyday and still cant remember them because they are too long and random. I do put some bogus letters on the front and back of the passwords just in case it ever got stolen, so it would just frustrate them. I can barely remember myself which letter and numbers are the bogus ones when I look to use them.
Just having a long password with mixture of upper/lower case, alpha numeric with special characters where I had to manually enter (no copy/paste) each time would frustrate me. IMO, another reason to put the passwords stored whether is encrypted spreadsheet or password keeper.
__________________
Have you ever seen a headstone with these words
"If only I had spent more time at work" ... from "Busy Man" sung by Billy Ray Cyrus
easysurfer is online now   Reply With Quote
Old 09-12-2016, 08:54 AM   #40
Recycles dryer sheets
 
Join Date: Jul 2016
Location: New Hampshire
Posts: 262
Open source has no correlation to security, unless you are a security expert who reads and understands ALL the source code and you compile the sources yourself (with a compiler that you have also analyzed personally for security issues.) In my experience, open source software tends to have more security issues because not enough of the developers are motivated to find and fix issues. Just look at all the problems OpenSSL has had over the years (Heartbleed, etc.) This is not a knock on Keepass, but as a long-time software developer I am weary of unsubstantiated claims made for "open source".

Personally, I use LastPass as I trust its security model that has been independently audited. It is easy to use and I don't have to worry about losing (or having stolen) a paper record of passwords.
__________________

__________________
Steve
jonat is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How do I get my old ID back - don't have password or email address I registered copyright1997reloaded Forum Admin 1 03-10-2007 06:10 PM
Password Management Martha Other topics 31 02-07-2007 11:12 PM
Double entry of password theloneranger FIRECalc support 0 02-02-2007 10:29 AM
WEP Password TromboneAl Other topics 6 07-31-2006 11:31 AM

 

 
All times are GMT -6. The time now is 06:56 AM.
 
Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.