[ art / civ / cult / cyb / diy / drg / feels / layer / lit / λ / q / r / sci / sec / tech / w / zzz ] archive provided by lainchan.jp

lainchan archive - /tech/ - 35637

File: 1489768909229.png (329.5 KB, 206x300, 4MK2GIS.jpg)


Hi lainons.

I wonder, how do you get used to the habit of using password managers?
Isn't it a hassle when you get to a public computer and need to log on somewhere?


>I wonder, how do you get used to the habit of using password managers?
It's fairly easy to get the piece of paper I carry around with this information to look at.
>Isn't it a hassle when you get to a public computer and need to log on somewhere?
I minimize the accounts and so passwords I need. Ideally, I'd have less than five; practically, I do, but I have a decent amount of unclosed accounts from years ago I need to deal with.

I don't recall the last time I used a public computer.


I have ~5 accounts only for my college related stuff. I'm registered to probably hundreds of stuff, most of which I have forgotten that it even exists. I even forgot about most of my edgy high school nicknames. There was a time when I was registering a lot to random forums.


If you're using your passwords on public systems... I mean.... I wouldn't ever want to log into my main vault on a public machine, because if it's compromised, that's game over.

At most, I'd probably pull up the password on my personal device then manually type it in. Just don't log into you main email on a public machine or anything else sensitive.


I use Keepassx. It is Libre, cross-platform and has everything I need. Password generation feature is handy too


I have a few different passwords I know by heart for accounts I know I'll need to access on public computers, otherwise on machines I own I use keepass2.


The few passwords I might ever need to enter on a public computer, I have memorized
(And those are the hassle)

Realistically, my password manager also lets me keep some idea of the list of stuff I'm registered for, which is handy soykaf


The problem is rather when I have to use it that way, i.e. I don't have a choice. Like when I am on a lab on my college ad the teacher did not allow me to use my own laptop for whatever reason.

What's the difference between kwallet and keepass?


Well, I guess I'll give keepass a try.


I use KeePassX as my password manager. I keep the database synced to OwnDrive, and also on a flash drive. I update the copy on the flash drive weekly. The flash drive also has a portable version of KeePassX installed on it.

If I go to a computer that isn't mine, I can get my database either
- from my phone (which has an OwnDrive app)
- or from the flash drive
- or from the OwnDrive website (which I have memorized the password for)

and I can read the database on:
- my phone
- or the copy of KeePassX on my flash drive
- or on app.keeweb.info

I have at least a hundred passwords stored in my password manager; this is *by far* the easiest way I can think of to manage them. It's worked quite well for me for several years now.


Just curious, but if you decrypt the database on a public computer, shouldn't you already assume that you are compromised? Not trying to threaten you in anyway, but I am too paranoid myself...

I am using Tails, but still hesitate to type in my master password on others' devices.


I would never enter a password of mine on a public computer. Though you could certainly keep a portable installation of your password manager, I would not recommend using it on public computers however.

Also obligatory pass wage slave https://www.passwordstore.org/
Its the "Standard Unix Password Manager"


Don't do anything on a public computer tht requires a password!

1) Get a job.
2) Get a computer.


Use pass (https://www.passwordstore.org/), keep the pass directory stored on an encrypted server secured with ssh keys, access all your passwords via ssh.

That's the best way to do it IMO.


>goes through the trouble of having seperate different passwords that are hard to remember for purpose of more security
>goes on public computer he doesn't know what is installed on

Do you know what a contradiction is or have you never seen a keylogger before?


Keepass, KeepassX it's the best way to organize your passwords. It isn't as secure as using a text file encrypted with gpg but it's more secure than using a "cloud service" as last pass or similar. Also it has an iOS and an android version which is very handy. You can use a portable version of the desktop software in case you want to use it in another computer which you should be vertical careful with. If you do this you should have a special database file with only the absolutely necessary. And you should change your passwords immediately after using the portable version in another computer.
My point is: Keepass is a very useful and powerful tool but the last layer of defense is you. Don't do anything stupid.