Quote:
Originally Posted by JSWolf
You misunderstood. What was said to be the bad advice is your advice to keep your written password with your driver's license. That would be your wallet. And that is bad advise. The writing down your passwords was not the bad advise.
|
Then perhaps your wallet is bad advice for you. That does not make it bad advice for many others.
Quote:
Originally Posted by Karellen
Thanks for the links, but I have to say the first two links were completely underwhelming. A paragraph of text saying "writing down passwords is good"
The third link seemed to be exactly against writing down passwords, as you would expect from a site selling password manager software.
|
Perhaps, but in the cases of the authors of the first two articles, their reputations precede them in security circles. They don't need lengthy articles to support their assertions when they have published books and best practices whitepapers on the subject.
As for the 1password link, they don't say writing down passwords is bad. Quite the contrary: it does agree with other security experts that writing down passwords is good. But their solution is better, obviously, because they're selling software and services instead of notebooks
.
Quote:
Originally Posted by Graham44
Sometimes old school works |
As does "rubber hose cryptanalysis". You have to choose your threats and mitigate your risks. For some people? A piece of paper with important passwords stored in their wallet next to their license or other ID is a good idea. For some like journalists operating in countries under repressive regimes? Maybe not.