+1 for KeePass!
You can also have it require both a key file and a password to unlock... so it's much harder (read impossible) to easily brute force.
Topic: Regarding passwords - page 2. (Read 2726 times)
KeePass is pretty nice for long random pass that you don't have to remember. It just needs one offline password to open your key database files, which are encrypted.
Is Lastpass.com a good idea?
I've never had any problems with LastPass. I've even used the one-time password feature to access my account while traveling internationally without ever having it compromised.
Is Lastpass.com a good idea?
...take a phrase ie ilikepudding as an example
add some caps
IlikePuDDing
add some numbers
I8LikePuDDing8
Add some special symbols
I8Lik#PuDD!ng8
Throw in an alt code or 2
§╒ª◘
I8Lik#PuDD!ng8§
If you do all that you will be legit
add some caps
IlikePuDDing
add some numbers
I8LikePuDDing8
Add some special symbols
I8Lik#PuDD!ng8
Throw in an alt code or 2
§╒ª◘
I8Lik#PuDD!ng8§
If you do all that you will be legit
That's not secure. That would work for an online login, because it can limit the number of trials an attacker can make.
You should not use such for encryption of wallets!
They're undoubtedly (probably) secure passwords, but they seem hard to remember. I mentioned this in another thread, but another option aside from including uppercase, lowercase, numbers and symbols is to create a long password with just plain English words, which are much easier to remember. Check out http://www.diceware.com for example. Long passwords result in exponential growth in complexity, rather than just polynomial growth by including more symbols.
And easier to remember.
QWERTY12345 when you can remember a formula of "QWERTY12345x3" knowing the password is QWERTY12345QWERTY12345QWERTY12345
I like this theory. Stoners do too.
Use OpenSSL to get better (cryptographically strong) random numbers.
like this:
But note that you get 6 bits of information per character, because there are 2^6 = 64 possible chars.
like this:
Code:
$ openssl rand -base64 12
VSvl9WFLu7Y7bOR8
VSvl9WFLu7Y7bOR8
But note that you get 6 bits of information per character, because there are 2^6 = 64 possible chars.
They're undoubtedly (probably) secure passwords, but they seem hard to remember. I mentioned this in another thread, but another option aside from including uppercase, lowercase, numbers and symbols is to create a long password with just plain English words, which are much easier to remember. Check out http://www.diceware.com for example. Long passwords result in exponential growth in complexity, rather than just polynomial growth by including more symbols.
I'm pondering using this as a method to generate passwords, would anyone care to critique it for me?
http://sprunge.us/UKAg
http://sprunge.us/UKAg
Jump to: