Fantasy Football - Footballguys Forums
boots11234

How do you keep track of your passwords?

Recommended Posts

I'm looking for an app or something to use to be a repository for all my PW"s used for my online sites.  I'd prefer something free but willing to pay if its good.  What do you all use or recommend?

Share this post


Link to post
Share on other sites

A password protected excel doc. Lord help me if I ever forget that password. 

  • Laughing 1

Share this post


Link to post
Share on other sites

Got mine listed out in an electronic document.  I have recently started a new password system that I hope allows me to remember my passwords better.  I have a certain letter sequence and a certain number sequence that I know I will never forget and use in all my passwords.  I then sandwich the website or app name in between which should be obvious when I am logging in.  This makes all my passwords unique, but with a common template.  So my Footballguys password is essentially the following:  lettersequencefootballguysnumbersequence.   If the account requires a symbol in the password, I use a particular symbol that I throw on the end.  

  • Like 3

Share this post


Link to post
Share on other sites
4 minutes ago, Galileo said:

Got mine listed out in an electronic document.  I have recently started a new password system that I hope allows me to remember my passwords better.  I have a certain letter sequence and a certain number sequence that I know I will never forget and use in all my passwords.  I then sandwich the website or app name in between which should be obvious when I am logging in.  This makes all my passwords unique, but with a common template.  So my Footballguys password is essentially the following:  lettersequencefootballguysnumbersequence.   If the account requires a symbol in the password, I use a particular symbol that I throw on the end.  

So that means if footballguys, or any other web site you use got hacked, once your password gets leaked onto the internet, all someone has to do is replace “footballguys” with the name of the web site they’re trying to log into with your credentials, and they’re in? If so, it sounds no more secure than just using the same password everywhere. 

I use 1Password, works well, worth the nominal cost.

  • Like 2

Share this post


Link to post
Share on other sites
3 hours ago, boots11234 said:

I'm looking for an app or something to use to be a repository for all my PW"s used for my online sites.  I'd prefer something free but willing to pay if its good.  What do you all use or recommend?

Password Safe is  a free, open source tool that my IT security folks at work recommend.

  • Like 1

Share this post


Link to post
Share on other sites

My friend that works for IBM recently told me that security is telling them the most important thing about a password is length.  Special characters, numbers, capital letters aren't nearly as important as length.  They recommended making it a sentence or something.  All the shorter ones are broken easier with brute Force.  When quantum computing comes we are all screwed.

  • Like 1

Share this post


Link to post
Share on other sites
4 hours ago, GregR said:

Really not a good idea.

How to Hack Excel Password in Minutes

If someone hacks into my work network then c'est la'vie. The doc is saved there and I don't access it anywhere but my office. I'll add password safe to the to do list though.

Share this post


Link to post
Share on other sites
2 hours ago, Mrs. Rannous said:

I use a sheet of paper.  Good luck hacking that.

This is what I use.  

Share this post


Link to post
Share on other sites
2 hours ago, Mrs. Rannous said:

I use a sheet of paper.  Good luck hacking that.

Yep. Typed em all out on a spreadsheet, printed it, and didn’t save the file. Repeat every couple of years as passwords change or accounts added.

Share this post


Link to post
Share on other sites
8 hours ago, Galileo said:

Got mine listed out in an electronic document.  I have recently started a new password system that I hope allows me to remember my passwords better.  I have a certain letter sequence and a certain number sequence that I know I will never forget and use in all my passwords.  I then sandwich the website or app name in between which should be obvious when I am logging in.  This makes all my passwords unique, but with a common template.  So my Footballguys password is essentially the following:  lettersequencefootballguysnumbersequence.   If the account requires a symbol in the password, I use a particular symbol that I throw on the end.  

My method is very similar. Besides the bolded*, I add characters, but not whole words, that indicate the type of business and name. Upper case and special characters are added when required.

*I have a couple sets of the common numeric characters that I can get by the 2nd try if I miss on the 1st. The alpha characters are the 1st letters of the words in a sentence that is meaningful to me.

I have this on a spreadsheet, using just "." for the common characters. For example, if I had wells Fargo account, assuming no upper case or special character requirement, it would appear as "ba.wf." in my spreadsheet. I take a picture of the spreadsheet with my phone whenever I update.

 

Share this post


Link to post
Share on other sites
9 hours ago, themeanmachine said:

So that means if footballguys, or any other web site you use got hacked, once your password gets leaked onto the internet, all someone has to do is replace “footballguys” with the name of the web site they’re trying to log into with your credentials, and they’re in? If so, it sounds no more secure than just using the same password everywhere. 

I use 1Password, works well, worth the nominal cost.

Agreed to an extent.

I saw a story on the local news regarding password security, and Galileo's method was the exact method the local news suggested as how you would "randomize" your password and keep them all different.  However, the local news story was aimed more at preventing a hacker from hacking that specific password, and did not discuss a breach where your password is revealed.

Share this post


Link to post
Share on other sites
10 hours ago, bigbottom said:

Lastpass

:goodposting:

 

I pay for the premium version and it's great.  Works really well with IOS and face ID or fingerprint

  • Like 1

Share this post


Link to post
Share on other sites

Used to use password protected excel, but recently switched to LastPass as I started to rely on Google Chrome more and more and it got less important to remember specific passwords.  So far, so good, but it is time consuming to switch over passwords one by one. 

Share this post


Link to post
Share on other sites
5 hours ago, Punxsutawney Phil said:

My friend that works for IBM recently told me that security is telling them the most important thing about a password is length.  Special characters, numbers, capital letters aren't nearly as important as length.  They recommended making it a sentence or something.  All the shorter ones are broken easier with brute Force.  When quantum computing comes we are all screwed.

https://xkcd.com/936/

  • Like 3

Share this post


Link to post
Share on other sites

Lastpass and it's a lifesaver. Especially when trying to create original passwords for every site.

Share this post


Link to post
Share on other sites

I use the same password for everything, but I add the first and last letters of whatever website I'm using.

(However, one flaw in my system is that when a company changes its name or gets bought out, it can be difficult to remember exactly what their old website used to be.)

Share this post


Link to post
Share on other sites

reset constantly

  • Like 3

Share this post


Link to post
Share on other sites
11 minutes ago, [scooter] said:

I use the same password for everything, but I add the first and last letters of whatever website I'm using.

(However, one flaw in my system is that when a company changes its name or gets bought out, it can be difficult to remember exactly what their old website used to be.)

How do you do this when one site requires a special symbol and another will not accept a spec!@l symbol?

 

 

Share this post


Link to post
Share on other sites

Another vote for LastPass here.  It's a lifechanger.  Get the browser extension and the app for your phone, I haven't remembered or typed a password in ages. 

  • Like 1

Share this post


Link to post
Share on other sites
2 minutes ago, E Street Brat said:
15 minutes ago, [scooter] said:

I use the same password for everything, but I add the first and last letters of whatever website I'm using.

(However, one flaw in my system is that when a company changes its name or gets bought out, it can be difficult to remember exactly what their old website used to be.)

How do you do this when one site requires a special symbol and another will not accept a spec!@l symbol?

I replace the symbol with the number associated with it on the keyboard.

Not saying this is a perfect system (some sites require a specific number of characters for their passwords, which messes with everything). But I trust it more than I trust giving all my passwords to an app.

Share this post


Link to post
Share on other sites
1 minute ago, Ignoratio Elenchi said:

Another vote for LastPass here.  It's a lifechanger.  Get the browser extension and the app for your phone, I haven't remembered or typed a password in ages. 

may give that a look.

Share this post


Link to post
Share on other sites
4 hours ago, Thunderlips said:

12345

 

It's the simpler ones that fool them these days. 

Amazing!

Share this post


Link to post
Share on other sites
4 hours ago, coyote5 said:

:goodposting:

 

I pay for the premium version and it's great.  Works really well with IOS and face ID or fingerprint

What does the Premium version of LastPass get you that the Free version does not have (I can't tell the difference when comparing on their website)?

Share this post


Link to post
Share on other sites
1 hour ago, [scooter] said:

I replace the symbol with the number associated with it on the keyboard.

Not saying this is a perfect system (some sites require a specific number of characters for their passwords, which messes with everything). But I trust it more than I trust giving all my passwords to an app.

as someone who works on cloud infrastructure and sees the security risks, i think i agree.

Share this post


Link to post
Share on other sites

I remember them... If I forget one, I hit "forgot password"

  • Like 1
  • Thanks 1

Share this post


Link to post
Share on other sites
Just now, fantasycurse42 said:

I remember them... If I forget one, I hit "forgot password"

I gotta remember this, but I'll probably forget.

Share this post


Link to post
Share on other sites
6 minutes ago, fantasycurse42 said:

I remember them... If I forget one, I hit "forgot password"

Same here.  Most of mine are auto-loaded into my browsers (is this not smart? :oldunsure:) but for ones I have to enter, my memory is still sharp enough to remember them.  If I don't, I reset.

Share this post


Link to post
Share on other sites
27 minutes ago, Al Czervik said:

What does the Premium version of LastPass get you that the Free version does not have (I can't tell the difference when comparing on their website)?

Good question.  One that at this point I admit I couldn't even answer :bag:  I think they've changed what features are premium and what are free since I became a premium subscriber, 3-4 years ago maybe.  I think at that point you needed premium to use it on multiple devices?  Back then it was only $12 per year and I know there was some essential feature that was locked behind premium.

Bottom line is that it doesn't look like premium is that important these days as long as I can get auto fill in applications, and utilizing face ID.  You probably saved me $36 per year :lmao: 

https://www.cloudwards.net/lastpass-review/

 

Share this post


Link to post
Share on other sites
1 minute ago, nirad3 said:

Same here.  Most of mine are auto-loaded into my browsers (is this not smart? :oldunsure:) but for ones I have to enter, my memory is still sharp enough to remember them.  If I don't, I reset.

IDK the stats, but my suspicion is most passwords are stolen via a phising scheme, so no matter how strong a PW someone might have, it wouldn't matter in that scenario. 

Simply avoid opening unknown emails and certainly don't click on unknown links. If an email comes in from a bank or place that you have a subscription, check the email address it was sent from before clicking on a link. It might look exactly like an email from Chase, but if the address it came from (which a lot of people don't check) is something like JPMalerts.business@gmail.com, someone is trying to steal your ####. 

  • Like 1
  • Thanks 1

Share this post


Link to post
Share on other sites

I've been meaning to look into one of these since last month when my Google account got hacked from some place IN ACTUAL F###ING RUSSIA.  I got that email alerting me and changed my password faster than you can blink.

Share this post


Link to post
Share on other sites
19 minutes ago, nirad3 said:

Same here.  Most of mine are auto-loaded into my browsers (is this not smart? :oldunsure:) but for ones I have to enter, my memory is still sharp enough to remember them.  If I don't, I reset.

i generally don't do this if the site is related to my financials.

Share this post


Link to post
Share on other sites

I write everything on a sheet of paper.  Nobody can read my handwriting even if they broke into my office and found this single piece of paper in a mislabeled folder.

Share this post


Link to post
Share on other sites

In the coast guard we are still using Microsoft outlook for email so I use the sticky notes in there to keep all my passwords. I can sync them with my iPhone and I have them on there as well.

Share this post


Link to post
Share on other sites

I gave up a while ago.  Chrome for everything but bank, brokerage, and 401K.  

I do maintain a Keepass database too, though I need it less and less due to Chrome and mobile apps.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.