 jjoshuaPremium
join:2001-06-01
Scotch Plains, NJ
kudos:3 | When will they learn... You must never store passwords. |
|
 jmn1207Premium
join:2000-07-19
Ashburn, VA
kudos:1 | I've been using LastPass for my password control to add an additional layer of security. |
|
| reply to jjoshua
said by jjoshua:You must never store passwords.
Stored passwords?
Never done such a thing. Not that much of a lame brain to count on some outside/third party thing to do that for me. I know how to all by myself. 
Exactly why I'll never use cloud crap for anything remotely useful!
--
The Firefox alternative.
»www.mozilla.org/projects/seamonkey/ |
|
|
|
Reviews:
 ·Comcast Business..
 ·AT&T U-Verse
 ·Clearwire Wireless
 ·AT&T Southeast
| reply to jmn1207
»threatpost.com/en_us/blogs/lastp···h-050511
I was interested in LastPass till I read this, and after that one article it was enough to convince me not to store any such data online period. It's a inconvenience but better than changing over 50 logins. |
|
jmn1207Premium
join:2000-07-19
Ashburn, VA
kudos:1 | You should do some more research on LastPass and how it works. There is a single login that is encrypted and your account can be locked only to specific devices that you use. It manages over 50 logins, each completely different and even I couldn't tell you what any of them are off the top of my head.
Changes have been made since the suspected activity that may have resulted in a breach back in 2011.
All of your passwords are stored online at the site where you use it. Hopefully they are all encrypted. After Sony had their Playstation accounts hacked, I decided to use a service that would make it simple to generate very secure passwords that were all unique to each individual site I accessed, while making it an effortless process to log in. |
|
| Nothing is completely secure as long as humans are part of the design, implementation, and maintenance.
--
I do not, have not, and will not work for AT&T/Comcast/Verizon/Charter or similar sized company. |
|
jmn1207Premium
join:2000-07-19
Ashburn, VA
kudos:1 | True, but I had a list of user names and passwords that I kept before, locally. When Sony was hacked and my account was potentially compromised, the email and password combination used at Sony was also being used at 8 other sites, including Paypal.
Rather than try and manage over 60 different very secure, unique passwords for each site I accessed, I decided to try a password locker, and LastPass made the cut after reviewing a few.
The biggest factor for me with LastPass is the convenience it offers. I'm not protecting Fort Knox here, and any compromise would be an annoyance, but it would not be a life changing disaster for me. I'll never tell anyone what they should use, I'll only say what works for me. |
|
| reply to jmn1207
I am just going to stick to Keepass. |
|
jmn1207Premium
join:2000-07-19
Ashburn, VA
kudos:1 | I tried that, but it didn't work for me nearly as well as LastPass. I love the online, cross-platform ease of use.
Even Steve Gibson gives LastPass his endorsement.
»blog.lastpass.com/2010/07/lastpa···ity.html
I'm sticking with what I feel is the far superior solution for me. |
|
 cdruGo ColtsPremium,MVM
join:2003-05-14
Fort Wayne, IN
kudos:7 | reply to cork1958
said by cork1958:Stored passwords?
Never done such a thing. Not that much of a lame brain to count on some outside/third party thing to do that for me. I know how to all by myself.
Exactly why I'll never use cloud crap for anything remotely useful!
I think he was referring to the service storing the user's password for authentication. There is ZERO reason for a service to store a password in a format that can be recovered by any means other then pure brute force. And there is a less-than-ZERO reason for any type of a service that touts itself as "safe" or managed by a security software company.
Apparently no one there has heard of hashed passwords with a salt. |
|
