We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
MSE News: Customers can't keep track of passwords
Former_MSE_Helen
Posts: 2,382 Forumite
"The average person has 22 online accounts each and more than one in six have over 40 such accounts to remember..."
0
Comments
-
A growing number of people in Britain are struggling to remember their passwords.The average person has 22 online accounts each and more than one in six have over 40 such accounts to keep track of.The council warns consumer should steer clear of using the same password, or even a variation of it, more than once.People are also advised to avoid birthdays, names and common words, and be creative.
all sensible.Memory expert Dominic O'Brien suggests people create their own coded story.
He explains: "Take the password 8:30121hP99. Imagine it's 8.30 in the morning and you're having a one-2-one meeting with little Harry Potter who's holding 99 red balloons."
so just have to remember 40 mini stories instead of 40 passwords.
0 -
Memory expert Dominic O'Brien suggests people create their own coded story.
He explains: "Take the password 8:30121hP99. Imagine it's 8.30 in the morning and you're having a one-2-one meeting with little Harry Potter who's holding 99 red balloons."
Daftest suggestion ever. I can't even keep the story in my head, let alone translate it into a password. Anyway, you could easily remember the story and turn it into "8.30121hP99" so it doesn't even work.0 -
Well, I don't see the problem with using one password for accounts that aren't so important, such as MSE... I will admit that I have registered with the same password on many forums and shopping sites (where I make sure that my card details and address are not stored)0
-
The best bet is to use a program to remember them all. There are lots of them but personally I use the free KeePass, not because I think its the best to use but because it is open source so not likely to have anything dodgy in it.
I also put the password file on Dropbox which means I can access it on my work computer and my mobile phone too so I am never without it.0 -
I have a different password for every "useful" site (such as this one) and let the browser save the login information with a master password. If someone hacks my browser and finds it, its not the end of the world.
Sites that you have to register just to get something you want, and don't intend to use much afterwards, I typically use the same password and a throw away email address.
For sites which have my payment details, passwords are stored using "Password Safe" (open source), with the data stored inside a 2048-bit True Crypt partition which is only mounted when needed.
For banking sites, password are stored on a device that I created for that purpose that is kept in the safe. Just in case the device is stolen at any time, there are no references to the actual banks the passwords belong to, and they are also obfuscated.0 -
It wouldn't help even if you could access password file in Dropbox as the program heavily encrypts it. Of course you do have to keep the master password safe as that unlocks the file, but at least that is only 1 password I need to remember.I will hack your dropbox then... one password to rule them all
0 -
It wouldn't help even if you could access password file in Dropbox as the program heavily encrypts it. Of course you do have to keep the master password safe as that unlocks the file, but at least that is only 1 password I need to remember.
Thats one thing I've never trusted - password manager with built in encryption. The password managers I've used had no options to choose what encryption scheme, strength, amount of entropy when creating the keys etc. Nor has a feature for plausible deniability, so you could be forced to reveal your master password.
Two passwords is a much better approach. One password opens up the database and shows you one set of passwords, whilst another password opens up a completely different database of passwords. So if you are forced to give up your password, you don't have to give them the real one
0 -
Thats one thing I've never trusted - password manager with built in encryption. The password managers I've used had no options to choose what encryption scheme, strength, amount of entropy when creating the keys etc. Nor has a feature for plausible deniability, so you could be forced to reveal your master password.
Two passwords is a much better approach. One password opens up the database and shows you one set of passwords, whilst another password opens up a completely different database of passwords. So if you are forced to give up your password, you don't have to give them the real one
If you're a secret agent maybe. If you're a normal person then that is just unnecessary paranoia!0 -
callum9999 wrote: »If you're a secret agent maybe. If you're a normal person then that is just unnecessary paranoia!
Maybe I'm a little over cautious, but meh. You wouldn't want to spend a day in my head, I can assure you.0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 352.1K Banking & Borrowing
- 253.5K Reduce Debt & Boost Income
- 454.2K Spending & Discounts
- 245.1K Work, Benefits & Business
- 600.7K Mortgages, Homes & Bills
- 177.4K Life & Family
- 258.9K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.2K Discuss & Feedback
- 37.6K Read-Only Boards