On Oct 10, 2011, at 9:26 AM, Kevin Cully wrote:
> I use LastPass and like it. The password is encrypted before it is sent
> to their server so even LasPass couldn't hack into your passwords.
Another vote for LastPass. I can generate a password like
"zzmg@@*jRGyRE6mz7Q3q", and use it for sites that may be targeted by hackers.
There is no way that they would ever be able to hack it using Rainbow tables
(http://en.wikipedia.org/wiki/Rainbow_table), so if the site ever gets
compromised, there is little chance of them figuring out my password from its
hash.
LastPass was strongly recommended to me by one of the security experts
here at Rackspace. I've been using it for nearly a year, and have changed all
my passwords from things I can remember to the sort of gibberish above, and
LastPass handles login for me. No two sites have the same password, and as a
bonus, I can tell sites that use unsafe password handling, since they have
"rules" about what sort of characters they allow ("no spaces or punctuation!").
Those restrictions mean that they are using clear text password storage and
comparison, so I avoid those sites like the plague!
-- Ed Leafe
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://leafe.com/mailman/listinfo/profox
OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech
Searchable Archive: http://leafe.com/archives/search/profox
This message:
http://leafe.com/archives/byMID/profox/[email protected]
** All postings, unless explicitly stated otherwise, are the opinions of the
author, and do not constitute legal or medical advice. This statement is added
to the messages for those lawyers who are too stupid to see the obvious.
