I rely on Bitwarden (slooowly migrating from… a spreadsheet…) and am thinking of keeping a master backup to be SyncThing-synchronized across all my devices, but I’m not sure of how to secure the SyncThing-synchronized files’ local access if any one of my Windows or Android units got stolen and somehow cracked into or something. I’m curious about how others handle theirs. Thanks in advance for sharing!

  • Entertainmeonly
    link
    fedilink
    arrow-up
    1
    ·
    8 months ago

    I don’t really understand why passwords are so hard. Take two words that have meaning to you. Two number sequences that are important. Then lastly decide on two symbols. That’s eight different passwords if you use one of each in that order, more if you want to mix the order. Now set rules to each. One word for personal one for business. One number set for fun the other for essential. The symbols are rather arbitrary but I try and stick with one for passwords I’m forced to make the other for passwords and logins I’m wanting to make. Obviously make unique passwords for any important stuff like baking and such but with this method I can log into accounts over ten years old within the first two tries. Usually it’s the user name or tag that gives me the real trouble.

    • lud@lemm.ee
      link
      fedilink
      arrow-up
      8
      ·
      8 months ago

      You entire system could be compromised quite quickly if someone figures out the pattern. It’s also susceptible to hybrid attacks.

    • Imprint9816@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      6
      ·
      edit-2
      8 months ago

      Or just generate a random series of 5 words (through bitwarden) separated by the character of your choice and have a much better password that’s relatively easy to memorize.

      Relevant xkcd

    • InputZero@lemmy.ml
      link
      fedilink
      arrow-up
      2
      ·
      8 months ago

      This might have been acceptable 20 years ago but it’s not a strong enough policy today. Data theft happens all the time and it’s in the interests of a company who’s security has been breached to not tell you that your data has been taken. You should assume that at anytime someone has several examples of your login credentials, not just one. You should use a password manager that isn’t Chrome, Firefox, Safari, ect.