Thread: passwords
View Single Post
  #14 (permalink)  
Old 10-24-2007, 10:11 PM
Sebastian G.
Guest
  
Posts: n/a
Default Re: passwords
AnthonyM wrote:


> I use a modified approach to all the solutions mentioned above. Truly
> it doesn't matter if you keep them in an excel file. If they are
> stored somewhere, there is a potential vulnerability. So I use
> different passwords for every site, and I do store 1/2 of the password
> in a system (I won't endorse a particular one, but I've used several
> methods, Excel, RoboForm, Keepass, UltraSafe). So I put 1/2 of the
> password in the system. I usually do a random generated 8-10
> character key. Then, I memorize a 2nd 1/2 that is a keyphrase. This
> helps me feel secure that even if my method of storing passwords is
> comprimized, they still have to come up with the 2nd half of the
> password that is memorized.


Or written in another way: If one of your passwords gets compromised
externally, half of each of your other passwords is also compromised.
Very very very stupid idea!

> Systems Engineer, MCSE + Security

~~~~

Oh well, you're a Minesweeper Consultant and Solitaire Expert?

> http://www.phonefactor.net - Strong Authentication


Nah... that's too easy...

Reply With Quote