Re: [gentoo-user] Re: Password questions, looking for opinions. cryptsetup question too.
Am Wed, Sep 20, 2023 at 04:51:36PM -0400 schrieb Rich Freeman: > > > Anyway, when I do that and use the new passwords successfully, I make a > > > backup copy and on my rig, I can encrypt it with a right click. I then > > > shred the original. > > > > Just on a sidenote, once you’re on an SSD, shredding has no use and is > > actually detrimental. > > > > I'm not sure I'd go quite that far, but it certainly isn't as effective. > > No way to be certain how well it works, but it is certainly worth > doing an ATA Secure Erase command on the drive. A good SSD should > implement that in a way that ensures all the data is actually > unretrievable (probably by implementing full disk encryption and > erasing the key). Of course, there is no way to tell if the drive was > implemented well. Uhm, Dale was talking of a single file, not an entire disk. ;-) -- Grüße | Greetings | Salut | Qapla’ Please do not share anything from, with or about me on any social network. do something for your image -- let yourself be seen with me. signature.asc Description: PGP signature
Re: [gentoo-user] Re: Password questions, looking for opinions. cryptsetup question too.
On Wed, Sep 20, 2023 at 4:22 PM Frank Steinmetzger wrote: > > Am Tue, Sep 19, 2023 at 11:49:24PM -0500 schrieb Dale: > > > Anyway, when I do that and use the new passwords successfully, I make a > > backup copy and on my rig, I can encrypt it with a right click. I then > > shred the original. > > Just on a sidenote, once you’re on an SSD, shredding has no use and is > actually detrimental. > I'm not sure I'd go quite that far, but it certainly isn't as effective. No way to be certain how well it works, but it is certainly worth doing an ATA Secure Erase command on the drive. A good SSD should implement that in a way that ensures all the data is actually unretrievable (probably by implementing full disk encryption and erasing the key). Of course, there is no way to tell if the drive was implemented well. Full-disk encryption at the OS level is of course the best way to protect against recovery of data on a discarded disk. -- Rich
Re: [gentoo-user] Re: Password questions, looking for opinions. cryptsetup question too.
Am Tue, Sep 19, 2023 at 11:49:24PM -0500 schrieb Dale: > Anyway, when I do that and use the new passwords successfully, I make a > backup copy and on my rig, I can encrypt it with a right click. I then > shred the original. Just on a sidenote, once you’re on an SSD, shredding has no use and is actually detrimental. -- Grüße | Greetings | Salut | Qapla’ Please do not share anything from, with or about me on any social network. On Mondays I feel like Robinson -- I’m waiting for Friday. signature.asc Description: PGP signature
Re: [gentoo-user] Re: Password questions, looking for opinions. cryptsetup question too.
Grant Edwards wrote: > On 2023-09-20, Dale wrote: > >> For websites, I really like Bitwarden. I remember one password and it >> can generate passwords for all the websites I use. The passwords it >> generates are pretty random. For sites that don't allow symbols, I can >> turn that off. The big point, I only remember one password. Thing is, >> on one hand I need help remembering all these passwords. On the other >> hand, that is a risk itself. > I second the recommendation of Bitwarden. I used to use Lastpass but > they discontinued their free version, and the entry-level price was > just too high. I was so impressed with Bitwarden's support that I did > end up subsribing to their lowest-level paid service even though I > don't really need any of the extras that gets me. It's also nice to > know that I can set up my own Bitwarden server if I want to. > > If you're using Bitwarden's cloudy storage, don't forget to back up > your password database locally too. I always back it up in human > readable format and then encrypt it using openssl command-line > methods. You don't want to have to depend on either Bitwarden's > servers or the Bitwarden app to retreive your passwords. > > -- > Grant > Usually, once a year I change my major passwords, bank, credit card, ebay, Paypal, Amazon and such. I have a folder thingy that I store those in to make sure I don't forget to change something important. Anyway, when I do that and use the new passwords successfully, I make a backup copy and on my rig, I can encrypt it with a right click. I then shred the original. While I think Bitwarden will be around and they will work fine, one never knows. I'm thinking of making a one time donation to Bitwarden. Just to help them out. I can't do much but I can do that. I used Lastpass until they switched too. I actually imported my passwords from one to the other. It seems to work the same way to me. I still use Lastpass in Seamonkey. Bitwarden doesn't have a plugin for Seamonkey that I've found. Lastpass hasn't been updated in ages either. Once Firefox did their major changes a few years ago, a lot of old plugins are no longer maintained. Seamonkey needs to catch up or it is going to die. Dale :-) :-)