Thread replies: 39
Thread images: 5
Thread images: 5
File: 2011-09-20-06-26-29-63220e.png (20KB, 461x183px) Image search:
[Google]
20KB, 461x183px
How does /g/ keep their passwords?
I write them all down on a pad that's next to my keyboard and I also store them in Firefox with a Master Password. It's Triple DES encrypted, so still reasonably secure.
>>
Memorize everything.
>>
I have memorized long strings of characters and my passwords are usually random chunks of it intermixed so that no password is equal to another but I can still remember them by position
>>
Zip them with a password and write that password in a notepad
Then I zip that notepad with other password and encrypt filenames
So I make a blank notepad with passwords name
And I zip it with all the others with a new password
And finally, the last password I write in secret way and upload it in a zip file to any cloud that uses my first password
;-)
>>
>>59008196
i do the same, 6-8 character chunks
>>
>>59008196
This is some serious autism
I'll start doing this too
>>
>>59008103
>>59008103
I have one usual and common password then for every website I use to log in, I append the domain name to my password, then use SHA256 (with some salt) to create a ciphertext of my password and that ciphertext is my password for that account
Example : hunter2
to
hunter2google
to
hash (Seems like 4chan thinks my post is a spam if I put in the real hash)
>>
Firefox with master password with a backup exported to a password protected Excel workbook.
>>
>>59008103
Keepass2
>>
>>59008103
Keypass with key and password
>>
>>59008428
This. What is wrong with these autists? Isn't the fucking AES safe enough to protect their passwords? They even added ChaCha20 support.
>>
>>59008103
Pen and paper is the best way unless you have shit roommates. Password manager is okay, but not reliable enough without a weak password and vulnerable to being deleted.
>>
Like this
>inb4 won't protect against keyloggers because winblows
Keyscrambler
>>
on desktop - http://www.passwordstore.org
on android - https://github.com/zeapo/Android-Password-Store
sync with git
>>
stored in a text document on the same encrypted filesystem as my symkeys and priv keys.
generated like 100 of each. hidden on a tf card. the keyfiles for my encrypted devices reside in an encrypted file located on a dvd which also plays as a movie disk
>>
File: download.jpg (9KB, 212x237px) Image search:
[Google]
9KB, 212x237px
> writing passwords down
Your life is over when pic related happens.
>>
>>59008546
This is what retards actually believe.
>>
>>59008167
/thread
>>
keepassx
synced via dropbox
done
>>
Encrypted spreadsheet
>>
>>59008546
its not like you would last one night in jail anyways you fucking nerd
>>
>>59008103
I use keepass2 through mono on Linux (keepassx doesn't support plugins so I can't get browser integration) and use the keefox addon for firefox to autofill stuff. I sync my keepass database file using my nextcloud server. It's really convienent since pretty much every os has a keepass client and a nextcloud client.
>>
>>59008460
>AES
>safe
Obviously the government know about AES anon. They have algos that can crack it in less than a day.
>>
>>59008936
point out the exploit you're talking about and I will literally send you 1btc.
http://sources.debian.net/src/openssl/1.1.0e-1/include/openssl/aes.h/
>>
>>59009163
I will also send 1btc
>>
>>59008936
https://www.quora.com/Can-the-NSA-really-crack-AES-encryption-as-intimated-by-the-recent-Wired-article-about-the-big-new-Utah-data-centre
>good read bro
>>
>>59008546
That's why you write them down in cyphers, in invisible ink, and on random pages of a very very thick book you have laying around.
>>
>>59008103
I've been using the password manager with Firefox, but soon I'll be migrating over to Keepass
>>
>remembering more than one password and your name
>having to backup your passwords
>needing to sync passwords across devices
How has /g/ not discovered Master Password yet?
http://masterpasswordapp.com/
>>
pass
>>
Keypass
>>
>>59008196
But if you never know your password you can never give it to anyone. Do you think people are actually breaking encryption algorithms to get people's passwords? No, 999 times out of 1000 they're getting it from the horse's mouth. Usually through stupidity, but also through intimidation (see >>59007388).
>>
>>59008103
Backups are kept in a trezor password manager chrome plugin. (The passwords are kept encrypted in my google drive and can only be decrypted by my hardware device)
My main device is a Crp.to OnlyKey. It's like a password manager/yubikey/u2f/google authenticator all in one. Holds 24 accounts or 12 plus 12 plausible deniability accounts under a second pin. Oh yea and it's all pin protected. It works on my phone sometimes.
>>
File: IMG_20160826_141730889-862x647.jpg (60KB, 862x647px) Image search:
[Google]
60KB, 862x647px
>>59011773
forgot pic
>>
>>59008338
Same thing here but without the hashing. I also capitalize random characters and then write down only the uppercase chars and suffix I used for each service.
>>
>>59010092
>change password for one site
>have to update every other site as well
Fucking genius.
>>
>>59008103
>>59008338
i do this, made a couple of small apps (windows and android) that make it easier
thinking of switching the alg to bcrypt
>>
File: Capture.png (10KB, 500x325px) Image search:
[Google]
10KB, 500x325px
>>59012180
pic relate
>>
>>59008936
>the government
They can also throw you into a cell only god knows where and not let you out until you tell them the password. And that's only if they are nice and not use totally-not-torturing methods.
Thread posts: 39
Thread images: 5
Thread images: 5