Recommendations on password manager

[philotux]

I personally am using 'absurdly long, complex' passwords. Gmail, social media, Lastpass all have 121 character passwords.

Wow! I thought I was using looong passwords with 25 characters. I should reconsider

[paul1149]

I used lastpass for years, but felt it was getting too complicated and was not working on an increasing number of sites (I'm primarily in Vivaldi or Slimjet, both Chromium-based). I've found Bitwarden to be very good in both form and function, and have been with it for well over a year. If you're shy of the cloud you can set up your own server, which I don't bother with so no installation is necessary. There's a support forum on reddit.

[philotux]

I've found Bitwarden to be very good in both form and function, and have been with it for well over a year. If you're shy of the cloud you can set up your own server, which I don't bother with so no installation is necessary. There's a support forum on reddit.

Great! Thanks for your input!

The possibility to set one's own server sounds interesting. I don't have any clue as how I can do such a thing, but maybe on their support forum I can get some ideas.

Thanks again!

[Stevo]

Mathematically speaking, a simple password with the same number of digits is just as hard to crack with brute force as a complicated, impossible-to-remember one:

Code: Select all

NKH%5^*$3)&7^%3#*5@$dd$$mmm(-*(%%b4421!

versus

Code: Select all

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@dog

have the same amount of "hardness".

https://www.grc.com/haystack.htm

[manyroads]

It's the old 500 monkeys typing will eventually type War & Peace saying...

[philotux]

So the conclusion is: use a loooooooooooong-easy-to-remember-password.

[Captain Brillo]

Over the years I've tried a lot: the best I've found are Enpass and Bitwarden
Bitwarden, you have to log in to their site, Enpass is on your box.
The main issue with Enpass is that their update's very often break it. Severely.
Bitwarden, you have to set it to not log you out every damn time you close your browser!!!!!! (There is a setting, thanking whoever finally)

If Enpass could get their act together, it would be unbeatable.

And as for

So the conclusion is: use a loooooooooooong-easy-to-remember-password.

one view is that this is self defeating. Because you can't remember a lot of

loooooooooooong

things.
Try picking a phrase that only you know, then write it down.
For example, "greengrass" or "sink the bismarck"
If you look at that, there are umpteen different ways you can modify that by using upper/lower case, numbers, symbols, and substituting "leet numbers" for letters, like 3 for E, 1 for I, etc., you know what I mean. Make sure that repeating characters have different symbols. Like one 3 actually is a 3, the next is an E, etc etc

With just a couple of expressions, and your own little substitution formula, the odds of any one cracking your password get really big. There are technical articles available about this, but I bookmarked them on a dead box, just going by memory now. Look 'em up.

But you can get tons of easily remembered passwords this way, just by remembering your phrase and your substitution rule. Feel free to write these last 2 down , 'cuz no one will know what they mean.

[philotux]

Thanks Captain Brillo for the input!
I guess Enpass had passed under my radar (like too many other things). I never knew of it. I appreciate all the alternatives to look into.

Edit: Thanks for elaborating further on the subject. interesting ideas.

[sunrat]

correcthorsebatterystaple

[Mauser]

I use the password manager in Firefox which has always worked well for me. It's the only part of the Firefox browsers that the developers at Mozilla haven't broken yet.