https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9280340
MKV29
Link Copied
Most basic yet under utilised password tip: Use an Open-source password manager.
Any good password tips? Here are mine.
- 890
- 25
-
- Last Comment
-
Reasons
Vote down Reasons
- Self Promotion : 1
- Length is more important than complexity . This does not mean complexity is not important, just that length is more important. Shoot for length first, then complexity.
- Avoid common substitutions, as they are baked into password cracking rule-sets. Common substitutions include: a = @, i = !, s = $, etc. Same with adding a 1 to the end of your password and capitalizing the first character. These are common patterns, and are well-known to crackers.
- Instead of thinking "password" think "passphrase". A single dictionary word is extremely bad. Four to five random dictionary words, perhaps separated by spaces or special characters, is robust. The benefit of a passphrase is that it is easier for you to generate entropy while still remembering your key. Generating entropy through randomized characters is hard, and results in a hard to remember password, meaning you will likely end up with less entropy.
- Avoid "password walking". This is using a password with adjacent keyboard characters (e.g. "qwerty", "1q2w3e4r", "1qaz2wsx", etc.)
- Avoid any password present on a password blacklist. Ideally, this should be a baked-in process.
- You should be using a different password for every website. At the very least, your e-mail password should be extremely strong and unique. If someone gets into your e-mail, they can simply reset every other password connected to that e-mail, regardless of how strong they are. Password re-use attacks are common. I cannot overstate the importance of this one tip.
- SMS-based two-factor authentication (2FA) is better than nothing, but sim-swapping has made it inferior to other forms of 2FA and MFA.
- I, and my colleagues, and many others strongly recommend a (non-browser-based, audited) password manager. There still seems to be debate about password managers. I will only comment that most security professionals and government agencies encourage the use of them. They are not a panacea. Use them in combination with other positive security habits, like frequent backups and 2FA/MFA.
Expiring In
13 days
Top Comments
24 Comments
|
17 Dimers
- Sort By
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9280340
Most basic yet under utilised password tip: Use an Open-source password manager.
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9280649
MKV29 wrote:
Most basic yet under utilised password tip: Use an Open-source password manager.
Bitwarden is my go-to password manager. I use it literally everywhere and I don't need to remember anything except the master password.
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9280716
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9281442
This is so useful!
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9281596
1234
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282248
Dashlane is My Choice 💝
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282277
Peppering
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282381
MKV29 wrote:
Most basic yet under utilised password tip: Use an Open-source password manager.
Use your memory 😊
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282402
Expand
only works upto some extent
I use random generate passwords having various chars >15 len
Diff pass for diff accounts - can't remember more than 5
bikidas2060 wrote:hahaUse your memory 😊
only works upto some extent
I use random generate passwords having various chars >15 len
Diff pass for diff accounts - can't remember more than 5
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282405
Expand
bikidas2060 wrote:Yes, I mean how hard can it really be to remember 100s of unique passwords/passphrases and usernames.Use your memory 😊
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282472
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282473
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282517
Expand
bikidas2060 wrote:I remember all the passwords for 30+ accounts. 👻
If all 30 acc pass is same 
🌫️
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282522
Expand
Sidhi.Baat.No.Bakwas wrote:If all 30 acc pass is same
🌫️
All different 🤐🤐🤐
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282540
Rule 1 - Keep the need for critical passwords to 1 a4 paper length
Rule 2 - Write them down on an a4 paper with an ink which will not get erased due to passage of time
Rule 3 - Keep updating that a4 paper
Rule 4 - Do not forget rules 1 to 3
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9282732
Expand
bikidas2060 wrote:Of the the banks which i used asks me to reset password for every 2 months and i cannot use last 6 passwords and no password sholud be half from previous passwords.. resetting password everytime is painfull.. buggers even asks to reset profile password. you cannot reset any oneUse your memory 😊
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9283450
Apni wali bandi ka naam @123
I use it for demat to netbanking ....
Change password along with subject in every 6 months
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9283565
Expand
Acc1: [email protected]$Uguiu#@r
Acc2: 7WF##[email protected]
and so on 😬
bikidas2060 wrote:My passwordsAll different 🤐🤐🤐
Acc1: [email protected]$Uguiu#@r
Acc2: 7WF##[email protected]
and so on 😬
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9283587
maruti234 wrote:A4 paper length enough hoga ya chart le lu?Rule 1 - Keep the need for critical passwords to 1 a4 paper length
Rule 2 - Write them down on an a4 paper with an ink which will not get erased due to passage of time
Rule 3 - Keep updating that a4 paper
Rule 4 - Do not forget rules 1 to 3
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9283601
I use forget password. Works every time 
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9283672
Expand
Neo53 wrote:khud ko bhi to yaad rehna chahiye na
My passwords
Acc1: [email protected]$Uguiu#@r
Acc2: 7WF##[email protected]
and so on 😬
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9284436
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9284479
garamjalebi wrote:
Apni wali bandi ka naam
Change password along with subject in every 6 months
😮
https://www.desidime.com/discussions/any-good-password-tips-here-are-mine?page=1#post_9284727
Expand
I too have passwords like..
u#[email protected]
akki.akki wrote:It is generated by password manager. My passwords are also similar.
khud ko bhi to yaad rehna chahiye na
I too have passwords like..
u#[email protected]
Click here to reply
Reply
