Steam'i Yükleyin
giriş
|
dil
简体中文 (Basitleştirilmiş Çince)
繁體中文 (Geleneksel Çince)
日本語 (Japonca)
한국어 (Korece)
ไทย (Tayca)
Български (Bulgarca)
Čeština (Çekçe)
Dansk (Danca)
Deutsch (Almanca)
English (İngilizce)
Español - España (İspanyolca - İspanya)
Español - Latinoamérica (İspanyolca - Latin Amerika)
Ελληνικά (Yunanca)
Français (Fransızca)
Italiano (İtalyanca)
Bahasa Indonesia (Endonezce)
Magyar (Macarca)
Nederlands (Hollandaca)
Norsk (Norveççe)
Polski (Lehçe)
Português (Portekizce - Portekiz)
Português - Brasil (Portekizce - Brezilya)
Română (Rumence)
Русский (Rusça)
Suomi (Fince)
Svenska (İsveççe)
Tiếng Việt (Vietnamca)
Українська (Ukraynaca)
Bir çeviri sorunu bildirin
Tartışma Kuralları ve Yönergeleri
Bu iletiyi bildir
Tell me any advantages of password manager/s? These always had disadvantages for past ~25 years.. especially those who use "cloud" services and/or are online nowadays.
Especially smartphone apps are highly insecure. Apps? It already begins on smartphone itself, their OS, breaches, and whatsoever.
Even using a text file encrypted with WinRAR for USB is safer than an any Password Manager. Or use a reliable encryption tool for USB sticks. Even Windows' implemented encryption tool or with Windows' encryption certificates. Or why not combining all 3 at once, and additionally create an encrypted PDF Document.. There are so many ways.
For a more easy understanding:
+ encrypted PDF
+ encrypted WinRAR
+ encrypted Windows' certificates
+ encrypted USB stick/device
+ hidden device
..and voi·là, you have just created your own "password manager", highly secured and isolated.
I use more than 12 eMail accounts and a lot of various passwords stored in my head. Everything has its "category". I do not need such "tools".. However, I had written them down within my testament/last will, which I need to edit after database breaches..
https://haveibeenpwned.com/
P.s.:
Whenever Quantum Computers go live, no any encryption gonna withstand for a second. There will be a new age of cyber war, especially between China, Russia and western countries. Even North Korea are developing that.
Always best sticking to "isolated & offline" tools and "backups", encrypted ..
Everything which is connected to the net may be lost and/or instantly deleted/formatted. I could do a fresh install of my OS right now and wont lose anything important.
If I might get lost which rarely happens, I do own an isolated hidden and highly encrypted external drive.. which then is plugged in on isolated and offline devices to recover intel..
Yes you said it doesn't take centuries to crack a password and I quoted to point out it CAN if you use a strong password and adding more characters increases time to crack.
You're free to do that yourself. Stop replying to me and I won't have anything to reply to. Whilst your posting incorrect rubbish I'll continue to correct you and use various sources to backup what I say. Something you don't
Nope, I never said that. I said if your password manager get hijacked then your password on another site won't take centuries. To be honest, I think it is better that you ask a question before get misunderstand of my comment just like today.
I'm not the one that started argument. My answer is still no to change my mind, because I don't see your evidence.
So my answer should be enough for you to leave me.
PS: In case if you don't know what no mean then here is definition.
https://www.google.com/search?q=no+definition&rlz=1C1GIVA_enUS888US888&oq=no+def&aqs=chrome.1.69i57j0i433i512j0i512l8.3629j1j7&sourceid=chrome&ie=UTF-8
but you DID, at no point did you specify you meant a password from inside the password managers database. You said
That reads as if password managers database is stolen it won't take centuries to crack the password to ACCESS the database.
If someone got into it because they used a weak password the thief wouldn't need to crack any password from inside the database. The only password that would need to be cracked would be the Databases password itself.
You're the one spouting rubbish as fact, I provided examples to back up my claim and you still spout the same rubbish without backing it up. That means you're spreading misinformation and arguing that you're right when the opposite is true
We've just done this dance. if you reply to me I reply back. If you don't want to talk to me follow your own words (underlined in quote above)
Not really, USB sticks is easier way to hacking your PC from many different main reasons and sources. That is why my work don't allow me bring my own USB stick or plug my phone to PC.
That's is because they could introduce malicious things into their system. Hackers can literally install malicious code onto a USB drive and have been known to just drop them in places someone may pick them up. They then hope the person plugs it into a computer and infect it.
Has nothing to do with how secure a USB device can be to protect your stuff, especially if you encrypt it
That make no sense. I wasn't the one starting fighting and still no source proved with website address.
Your work disallows to bring USB sticks or any other storage media/device to "steal" intel of any kind. And/Or to infect a secured and isloted system by your devices. This has nothing to do with this topic "encryption" or "password managers"..
Even if set to "read-only" and all other security measures I had mentioned above?
Everything can be infected in first case if connected to the internet or by allowing to plugin a "strange" device. This is a whole different topic.
Your wording sucks. You've gone from stolen to hijacked. Lets go from both version of what you're trying to say
1. If the password manager database got stolen the thief would need to crack it's database password to gain access.
2. If the database got hijacked the hijacker would already be inside the database and wouldn't even need to crack any of the accounts passwords
If 1 the password managers password needs to be cracked but you claim it wouldn't take centuries regardless of how strong or long it is.
If 2 no password needs to get cracked like you implied a password DOES need to get cracked but it won't take centuries.
You're the one spreading rubbish as fact.
You're the one that tells me to block you and stop replying
You're the one changing your wording from stolen to hijacked. Stolen = still encrypted and hijacked can mean they have unencypted access
I'm the one providing sources to backup my claim
I'm the one that is going to do the smart thing and just stop replying and I can't be bothered wasting my time with you
A lot of people re-use the same password / email combination when signing up to different places, which is how a lot of people get "hacked".. there is a need to use multiple unique strong passwords, and it's going to be a pain to try remember them all.
Please do. I'm not sure why you want me to write that met your standard, but here is my specific that you wanted.
1. Hijacker successfully hijacked the password manager account and log in.
2. Hijacker now can log in many other site easily like bank, social media, and private information.
3. Hijacker got all information need to steal your money and information.
That is why password manager is bad.
Beside, I paid for my internet service provider and my computer, so there is not much you can do about it. This is the life. Even best, continue use your blocked communication option to hide my comments, avoid any comment that you may or not agreed with, or just move to different computer forum.
A password manager is one of the most secure methods of storing your passwords as long as you adhere to the basic requirements for proper account security, eg. good password combined with 2FA.
If you have a good password and opted for secure 2FA methods such as OTP codes and/or hardware keys, your account is effectively unbreachable.
Your choice in password manager is also important. You want one which stores your passwords in such a way that only you are able to access them. Bitwarden for example does this, they encrypt your vault and it can only be decrypted using your login credentials, even Bitwarden itself does not have access to your password vault. Data stored in this manner is also effectively uncrackable if you used a good password to protect it.
A password manager is highly recommended, for it allows you to use random passwords on all miscellaneous accounts. Currently most people have a single password they use for everything, if your login credentials leak in some way, because not all online services utilize equally secure account information storage, all other accounts could become compromised aswel. Remember that Facebook had unhashed copies of your account password, even the biggest players on the web are guilty of this and so is that small little hobby forum your frequent.
"But pen and paper", sure, if it works for you go ahead and use that. Make sure to have off-site backups just in case. But for most people this method quickly turns in to a huge mess.