On Fri, 29 May 2020, Mike C. wrote:
If you don't use a strong passPHRASE and change it regularly, where/how you store your passwords is mostly a moot point.
Mike, The passphrase need not be more than three or four words long, with spaces between each word; for example. 'Hog tied with bow'. The article said that the addition of spaces greatly increased the time it would take to guess or crack it. When I was in the Army and being taught how to pick locks and manipulate combination locks (skills I lost decades ago) I learned that all locks can be opened, the idea is to use one that would take more time to open than it would be left un-attended. We used Sargent & Greenleaf combination padlocks (user-setable combination) and I kept and used one for years. It had a security time of about 10 hours which the Army decided was as long as a locked file cabinet would be un-attended. I think digital passwords and passphrases have the same characteristics: just use one that would take more time to crack than the cracker is willing to spend on the attempt.
I'm sure I'm not the only one who's guilty of using very similar passwords with the same email address for multiple accounts for many years. =(
Web sites that have no personal information that could be monitized, such as pdxlinx.org and linuxquestions.org, are of no interest to those seeking to steal idendities or money so they need less secure passwords/phrases than do, for example, banks. Stay well, Rich _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
