nanog mailing list archives
Re: Dear Linkedin,
From: Scott Howard <scott () doc net au>
Date: Sat, 9 Jun 2012 14:24:48 -0700
On Sat, Jun 9, 2012 at 10:52 AM, <joseph.snyder () gmail com> wrote:
My biggest problem still is the multiple computer issue. I am on at least 3-5 physical computers and 1-20 virtual machines, and 2 cellphones a day. I honestly do not want to store a database of passwords encrypted or not on an open service.
Security is all about trade-offs. In this case it's the trade-off between storing an excrypted password database on a 3rd party server, v's re-using passwords and having (potentially) weaker passwords as a result of not doing so. Personally I use KeePass, with the database stored on a cloud-synced directory. To decrypt the KeePass database requires both a Passwords AND a Key file, which is NOT synced to the cloud. IMHO this gives the best of both worlds - easy syncing between multiple computers and the ability to use unique, very strong passwords with all websites. But also very strong security in the case that the KeePass database is somehow compromised from the cloud service, as both the password and keyfile would be required to decrypt. Scott
Current thread:
- Re: Dear Linkedin, [and proposed mitigation approach], (continued)
- Re: Dear Linkedin, [and proposed mitigation approach] Rich Kulawiec (Jun 08)
- Re: Dear Linkedin, Ted Cooper (Jun 08)
- Re: Dear Linkedin, Michael Thomas (Jun 08)
- Re: Dear Linkedin, Terje Bless (Jun 09)
- Re: Dear Linkedin, Scott Weeks (Jun 08)
- Re: Dear Linkedin, John Adams (Jun 08)
- Re: Dear Linkedin, Lyndon Nerenberg (Jun 08)
- Re: Dear Linkedin, Paul Graydon (Jun 08)
- Re: Dear Linkedin, elijah wright (Jun 09)
- Re: Dear Linkedin, joseph . snyder (Jun 09)
- Re: Dear Linkedin, Scott Howard (Jun 09)
- Re: Dear Linkedin, Jimmy Hess (Jun 09)
- Re: Dear Linkedin, Derrick H. (Jun 08)
- EBAY and AMAZON Brandt, Ralph (Jun 11)
- Re: EBAY and AMAZON Henry Yen (Jun 11)
- Re: EBAY and AMAZON Jo Rhett (Jun 11)
- Re: Dear Linkedin, Alec Muffett (Jun 08)
- Re: Dear Linkedin, Joel jaeggli (Jun 10)
- RE: Dear Linkedin, John Souvestre (Jun 10)