• Concetta@lemmy.blahaj.zone
    link
    fedilink
    arrow-up
    11
    arrow-down
    2
    ·
    1 year ago

    15 years ago the common logic was the most likely way for a password to get stolen is by writing it down and leaving it in an accessible spot, and somebody stealing the password there.

    I don’t think that logic holds anymore, and with the LastPass breach I think that’s proof you want to step away from the cloud not towards it. Imo the most secure way to store passwords is to generate multiple random codes, use a portion of each and then just write those down.

    • Rouxibeau@lemmy.world
      link
      fedilink
      arrow-up
      7
      ·
      1 year ago

      15 years ago you had to worry about the people around you. Now you have billions of bots trying to force shit all the time.

    • ParsnipWitch@feddit.de
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      1 year ago

      You can also use a password manager that’s not connected to a cloud. Or an encrypted usb stick. The problem with writing it on paper is, that people tend to use too short passwords or repeated passphrases. Using a really long master key and a key file with an encrypted database is safer than a cloud.

      • emptyother@programming.dev
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        Usb sticks corrupts damn easily. Even faster carrying them around. Learnt that the hard way.

        Or does anyone know about an usb stick that is practically immortal, that they can recommend?

        • Redeven@lemmy.world
          link
          fedilink
          arrow-up
          3
          ·
          1 year ago

          NVME ssd in a carry usb adapter. It’s as reliable as a regular ssd, but it’s way more portable and durable than commercial external hdds. A little bigger than usb flash drives but worth the tradeoff. Wouldn’t use it as the only backup place for a password dB file but for carrying around its pretty good.