@bfgreen @phase I have a string of numbers that I combine with phrases and symbols so each site has a unique password. Let’s say I was buying my dog’s prescription and used the phrase “MedsForDogs” in the password. All I need to save as the password is that phrase and some information on the placement of the numbers and symbols. It’s a bit if a hassle but avoids the problems of a single password across the dozens of sites I use.
@bfgreen @phase @voltronic Yes, I also use 2-factor authentication on sites where it’s available, even my fantasy football site. Wouldn’t want someone tinkering with my line-up or stealing my [half-vast] winnings!
@cassandra17lina @bfgreen @phase
I use Bitwarden as password manager, with the max length and complexity allowed for every site. Some places (CoSo being one) now support 128 characters, so that's my default.
Aegis is my 2FA app.
Both are open-source and audited.
@cassandra17lina @bfgreen @phase
Other good options may be found here. You can self-host your Bitwarden vault if you don't want cloud sync, or use LessPass.
If you want zero storage at all, I briefly tried Spectre (formerly Master Password) and it's a clever concept. I found it less convenient than an actual password manager, however, especially on a phone.
@voltronic that website was a multi-hours distraction. Lots of great tool options, some I have heard of and others that were new to me. Thanks for sharing! @cassandra17lina @phase
@bfgreen
Yeah that site can suck you in. I started using Bitwarden on the recommendation of people I trust here. Bromite (hardened Chromium mobile) and Aegis (2FA) are a couple things I discovered through Privacy Tools.
@cassandra17lina @phase Thanks for sharing. The challenge is usability vs password complexity. I have long, unique, complex passwords for every account and use 2FA/FIDO where enabled. Curious to what others do. @voltronic