|  03-11-2025, 12:01 PM | #2626 | |
| Guru            Posts: 822 Karma: 11053908 Join Date: Oct 2016 Location: Somewhere in Time Device: Forma, iPad Mini | Quote: 
 It's things like these which are why I suggest and recommend paper. | |
|   |   | 
|  03-11-2025, 12:15 PM | #2627 | ||
| Somewhat clueless            Posts: 788 Karma: 11000001 Join Date: Nov 2008 Location: UK Device: Kindle Oasis | 
			
			I didn't say I was.  I am, however, the only person who uses a file encrypted in this particular way (that's home-brew as well), and uses this particular app to access it. Not necessarily any more secure per-se than the commercial vaults (but probably no less so), but it's home-brew nature means that the miscreants won't be investing any time trying to crack it (if they even knew it existed). It also means I don't have to trust the providers of the commercial vaults - what if one of their developers goes rogue and releases a dodgy update? Or even is just a bit sloppy. Quote: 
 Quote: 
 I'd also worry about anyone who broke into my house and found it having access to my banking passwords etc. | ||
|   |   | 
| Advert | |
|  | 
|  03-11-2025, 02:03 PM | #2628 | ||
| Guru            Posts: 822 Karma: 11053908 Join Date: Oct 2016 Location: Somewhere in Time Device: Forma, iPad Mini | Quote: 
  Quote: 
 | ||
|   |   | 
|  03-11-2025, 02:07 PM | #2629 | |
| Resident Curmudgeon            Posts: 80,685 Karma: 150249619 Join Date: Nov 2006 Location: Roslindale, Massachusetts Device: Kobo Libra 2, Kobo Aura H2O, PRS-650, PRS-T1, nook STR, PW3 | Quote: 
  The notebook should be kept in a secure easily accessible location. | |
|   |   | 
|  03-11-2025, 02:13 PM | #2630 | |
| Wizard            Posts: 1,684 Karma: 9500498 Join Date: Sep 2021 Location: Australia Device: Kobo Libra 2 | Quote: 
 I keep my drivers licence in my wallet. My wallet gets stolen, and the thief does not have to be a genius to quickly figure out what those url's, site names and phrases mean. There goes all my security. My passport is in a drawer in my office... ditto above. | |
|   |   | 
| Advert | |
|  | 
|  03-11-2025, 03:05 PM | #2631 | 
| Guru            Posts: 822 Karma: 11053908 Join Date: Oct 2016 Location: Somewhere in Time Device: Forma, iPad Mini | 
			
			No, it actually isn't. It's all about risk management. While there is a risk of your wallet being lost or stolen, that risk is extremely small, far far smaller than say the risk of the account database here at mobileread being compromised. Security experts have been advocating it for decades. Just a few choice articles but you can easily find plenty more. https://www.schneier.com/blog/archiv...down_your.html https://www.personneltoday.com/hr/le...ecurity-chief/ https://blog.1password.com/safe-writ...our-passwords/ Edit: I'm not suggesting that paper is the best way to manage passwords. Just that it is a very good one for many people when done with care. Last edited by ratinox; 03-11-2025 at 03:16 PM. | 
|   |   | 
|  03-11-2025, 03:16 PM | #2632 | |
| Resident Curmudgeon            Posts: 80,685 Karma: 150249619 Join Date: Nov 2006 Location: Roslindale, Massachusetts Device: Kobo Libra 2, Kobo Aura H2O, PRS-650, PRS-T1, nook STR, PW3 | Quote: 
 | |
|   |   | 
|  03-11-2025, 03:17 PM | #2633 | |
| Wizard            Posts: 1,684 Karma: 9500498 Join Date: Sep 2021 Location: Australia Device: Kobo Libra 2 | Quote: 
 The third link seemed to be exactly against writing down passwords, as you would expect from a site selling password manager software. | |
|   |   | 
|  03-11-2025, 04:29 PM | #2634 | |
| null operator (he/him)            Posts: 22,007 Karma: 30277294 Join Date: Mar 2012 Location: Sydney Australia Device: none | Quote: 
 In a document case at Crewkerne railway station (took it out of my overnight bag and forgot to put it back). BritRail held the Exeter express at Salisbury and made an unscheduled stop at Crewkerne so I could get it. In a shoulder bag at a beach cafe in Crete. Returned 20 minutes later, it was still hanging on the back of the chair. At Railway Square in Sydney. It was returned untouched in the mail. On the street close to home. It was handed in to the police, who called to tell me they had it, they dropped it off a couple of hours later. I also leave a big enough to crawl though single hung window open 365*24*7, alongside one of them hangs a spare set of keys. The only time I lost anything of this ilk, was when the NSA shut down the Lavabit mail service because Edward Snowden used it. How did they know he used it, I suspect they already knew… but when the HRW Moscow agent posted his Lavabit address on Facebook asking "Anyone know if this is the real Edward Snowden?" and the UK Daily Telegraph and others reported her post the next day, they (Obama) had to be seen to be doing something. BR Last edited by BetterRed; 03-11-2025 at 04:48 PM. | |
|   |   | 
|  03-11-2025, 05:14 PM | #2635 | 
| Addict            Posts: 332 Karma: 7000000 Join Date: Sep 2024 Device: Kobo Clara BW | 
			
			Pen and paper for passwords - that way if someone wants to steal your passwords, they have to A) Find out where you live B) Break in C) Find out where you keep the notepad you write your passwords on D) then figure out what your email address is in order to log into accounts using your passwords and bonus E) If you want to make it extra secure write down your passwords in a list labelled a,b,c etc no website info then in a separate book write a = Goodreads b= Mint etc Sometimes old school works   | 
|   |   | 
|  03-11-2025, 05:35 PM | #2636 | ||
| Guru            Posts: 822 Karma: 11053908 Join Date: Oct 2016 Location: Somewhere in Time Device: Forma, iPad Mini | Quote: 
 Quote: 
 As for the 1password link, they don't say writing down passwords is bad. Quite the contrary: it does agree with other security experts that writing down passwords is good. But their solution is better, obviously, because they're selling software and services instead of notebooks  . As does "rubber hose cryptanalysis". You have to choose your threats and mitigate your risks. For some people? A piece of paper with important passwords stored in their wallet next to their license or other ID is a good idea. For some like journalists operating in countries under repressive regimes? Maybe not. | ||
|   |   | 
|  03-11-2025, 09:24 PM | #2637 | |
| Samurai Lizard            Posts: 15,010 Karma: 70029956 Join Date: Nov 2009 Device: NookColor, Nook Glowlight 4 | Quote: 
 | |
|   |   | 
|  03-12-2025, 02:20 AM | #2638 | 
| Onyx-maniac            Posts: 4,115 Karma: 18764971 Join Date: Feb 2012 Device: Nook NST, Glow2, 3, 4, '21, Kobo Aura2, Poke3, Poke5, Go6 | 
			
			The biggest deal is of course to use different passwords for everything, including crappy accounts that you don't care about. Some websites forces you to make an account for a one-time purchase. Generate a new password. Generating decent random passwords is not rocket science. But you certainly can't trust any password generator that someone posts online. Maybe it's reporting every password that it generates? Write your own that you can trust. You could also use two six-sided dice for 36 possibilities, 26 letters and ten digits. And throw another die for upper/lower? So keep your passwords long and random. That means you'll probably end up with a list of 200 or so untypeable passwords. | 
|   |   | 
|  03-12-2025, 03:21 AM | #2639 | |
| The Grand Mouse 高貴的老鼠            Posts: 74,412 Karma: 318076944 Join Date: Jul 2007 Location: Norfolk, England Device: Kindle Oasis | Quote: 
 | |
|   |   | 
|  03-12-2025, 03:42 AM | #2640 | |
| Onyx-maniac            Posts: 4,115 Karma: 18764971 Join Date: Feb 2012 Device: Nook NST, Glow2, 3, 4, '21, Kobo Aura2, Poke3, Poke5, Go6 | Quote: 
 You can do about as well as that with 14 lowercase letters or 11 letters/digits. I guess that xkcd is thinking of a field of 2048 words when they say 44 bits. Last edited by Renate; 03-12-2025 at 03:48 AM. | |
|   |   | 
|  | 
| 
 | 
|  Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post | 
| The Vent and Rant Thread | TadW | Lounge | 38587 | Today 12:20 AM | 
| Query about moderation in the Vent & Rant Thread. | Hitch | Feedback | 14 | 07-16-2016 05:05 PM | 
| Seriously thoughtful why did the vent and rant thread get moved? | kindlekitten | Lounge | 10 | 04-05-2011 04:47 PM |