<invalid character>  

Riffing off @White_Rabbit's post a few minutes ago, my toot for the day:

Be careful about what you post on social media and keep in mind what you've posted when sites ask you those "password recovery questions" like "What is your favorite movie?" and "What was the make and model of your first car?"

You start reminiscing about how you miss your childhood dog named "Candy," and an attacker may have access to change your password under those forgot password pages.

0
The Kat : Hello, Elliot.  

@0x56 @White_Rabbit

This is why I have substituted various recovery questions/answers to something completely off-topic:

"What was the name of your first pet" becomes "Were/Why/Who was *******/in ******/at ******."

That way, even if I reminisce or talk about my favorite movies, my comments can't be mined for answers.

0
<invalid character>  

@katharsys2012 @White_Rabbit @opie @tyghebright @amarand - but with a good password manager, you don't even need to answer a password recovery question, so just randomly smashing the keyboard would work.

0
Susan 🌻 🇺🇦  

@0x56 @amarand @tyghebright @opie @White_Rabbit @katharsys2012 I’m not trying to be a smart ass, or disrespectful in any way; isn’t a password manager/keeper just asking for it?! “Here’s my goodies”? If you get hacked, nothing is hack proof. I’ve got a list of cryptic hints. Period. Only my ex could really get anywhere with that. His technical prowess is -100, and that’s being generous.

0
<invalid character>
Follow

@Kitty62862 @katharsys2012 @White_Rabbit @opie @tyghebright @amarand - unless your master password is discovered, it cannot be "hacked" well, it could, but it would take thousands of years to do so.

A good password manager is encrypted at such a high level that it's implausible.

· 0· 0· 3
The Kat : Hello, Elliot.  

@0x56

Eh... I would put a "it depends" qualifier on that. IIRC there was an issue with that not *that* many years ago where some were vulnerable to attack. LastPass and OneLogin come to mind.

Personally, I use a non-internet based one, using a 256 key that goes through several thousand transforms before unlocking. I sync the DB to my phone about once a week. Trying to (non-quantum) backdoor the DB would take you several thousand years.

@amarand @tyghebright @opie @White_Rabbit @Kitty62862

0
Sign in to participate in the conversation

CounterSocial is the first Social Network Platform to take a zero-tolerance stance to hostile nations, bot accounts and trolls who are weaponizing OUR social media platforms and freedoms to engage in influence operations against us. And we're here to counter it.

Resources

Developers

What is CounterSocial?

Created by potrace 1.15, written by Peter Selinger 2001-2017

counter.social

More…