DTP


 
Lively discussions on the graphic arts and publishing — in print or on the web


Go Back   Desktop Publishing Forum > General Discussions > Software

Reply
 
Thread Tools Display Modes
Old 07-27-2014, 10:32 AM   #1
dthomsen8
Member
 
dthomsen8's Avatar
 
Join Date: Aug 2005
Location: Philadelphia, PA 19130
Posts: 2,158
Default Password Management

Any advice about password management? Lots of free and commercial management packages out there. Too many for me to choose right now.
dthomsen8 is offline   Reply With Quote
Old 07-27-2014, 12:47 PM   #2
terrie
Staff
 
Join Date: Oct 2004
Posts: 10,400
Default

I know there are some out there and there's one that is touted as being quite good but, of course, I can't remember the name. I'll post back when/if it comes to me...'-}}

Ahhh...google is your friend...it's LastPass and also KeePass...not used either myself...

Terrie
terrie is offline   Reply With Quote
Old 07-29-2014, 05:51 AM   #3
Steve Rindsberg
Staff
 
Join Date: Nov 2004
Posts: 7,571
Default

I just started playing with KeePass again. Awful name but impressive software. Easy enough to use on the surface but with features to a depth that'd keep any hardcore geek happy.

And it requires no install; just unzip it to any convenient folder (even on a thumb drive) and use it.

And free.

   
__________________
Steve Rindsberg
====================
www.pptfaq.com
www.pptools.com
and stuff
Steve Rindsberg is offline   Reply With Quote
Old 07-27-2014, 03:50 PM   #4
annc
Sysop
 
annc's Avatar
 
Join Date: Oct 2004
Location: Subtropical Queensland, Australia, between the mountains and the Coral Sea
Posts: 4,555
Default

Quote:
Originally Posted by dthomsen8 View Post
Any advice about password management? Lots of free and commercial management packages out there. Too many for me to choose right now.
I've used ForgotIt for many years and find it very good. They even require a very secure level of password to open the data file itself when you log in. Price is good and I've only ever had to pay for one upgrade, which was a major one.

It has four different data files, all kept in the one database: Passwords, Credit Cards, Serial Numbers and Notes.

Currently USD14.95 which is pretty reasonable.

   
__________________
annc is offline   Reply With Quote
Old 07-27-2014, 06:04 PM   #5
Howard Allen
Member
 
Howard Allen's Avatar
 
Join Date: Oct 2007
Location: Calgary, Alberta, Canada
Posts: 824
Default

I've been using 1Password for a couple years. $US50. Very highly rated and no complaints from me. There is a mobile version that syncs with the desktop version, making it very convenient to have your passwords wherever you may need them.

   
__________________
Howard

OSX 10.10.5
Howard Allen is offline   Reply With Quote
Old 07-29-2014, 03:04 AM   #6
LoisWakeman
Staff
 
LoisWakeman's Avatar
 
Join Date: Jan 2005
Location: Uplyme, Devon, England
Posts: 1,402
Default

I have an obscurely named notepad file hidden in a system folder. It hasn't let me down yet!
LoisWakeman is offline   Reply With Quote
Old 07-29-2014, 01:32 PM   #7
terrie
Staff
 
Join Date: Oct 2004
Posts: 10,400
Default

Quote:
lois: I have an obscurely named notepad file hidden in a system folder.
I use a hidden WordPerfect file (backed up by a .rtf and a pdf and then also backed up to a portable drive)...'-}}

Terrie
terrie is offline   Reply With Quote
Old 07-30-2014, 06:21 AM   #8
Steve Rindsberg
Staff
 
Join Date: Nov 2004
Posts: 7,571
Default

Hmm. What's that they say in the security biz? Security through Obscurity is no Security at all? Something like that.

I'm guessing that it wouldn't take too long for even a free search tool like Agent Ransack, or even Windows' own search feature, to unearth a file with email addresses, urls and passwords.

That assumes that the bad guy has some sort of access to your computer that'd allow running a search tool, of course. But if you can assume that that'll never happen, there's no real need to hide the passwords in an obscure place to begin with. Just use a passworded login and set the screensaver to kick in (and force a new login) after a reasonable period of inactivity so that houseguests/visitors can't get at the password file.

Which is more or less what I've been doing all this time. Which is why I decided to give KeePass a serious try. ;-)

   
__________________
Steve Rindsberg
====================
www.pptfaq.com
www.pptools.com
and stuff
Steve Rindsberg is offline   Reply With Quote
Old 07-30-2014, 02:46 PM   #9
terrie
Staff
 
Join Date: Oct 2004
Posts: 10,400
Default

Quote:
steve: Hmm. What's that they say in the security biz? Security through Obscurity is no Security at all? Something like that.
Yeah...I know...living on borrowed time...'-}}

Terrie
terrie is offline   Reply With Quote
Old 08-08-2014, 02:53 PM   #10
Franca
Staff
 
Franca's Avatar
 
Join Date: Oct 2004
Location: Monterey Bay area, CA
Posts: 2,227
Default

I had a pretty darned good "system" that I used before I got LastPass. I had a non-dictionary "word" made up of letters (caps and lc) and numbers to which I would append something to do with the site itself. Then I had a file that did not contain the actual passwords but simply a pre-determined reminder code for each site. So a double layer of obscurity. A simple search would not turn up any actual passwords. Someone would have to figure out the "word" for starters.

However, my concern with that system was not that someone might find my passwords on my computer but that a hacker online who collected a bunch of passwords might somehow be able to see my actual password on one site, figure out from that what my "system" was and perhaps be able to get onto multiple sites using it. But on the theory that the burglar will choose the house without the Rottweiler and the alarm system first, I figured it was a reasonably secure method for awhile, given how many utterly ridiculous passwords people still use on every single site they visit. A password manager is simpler than my old system, though, and far more secure so I finally saw the light. I just have to finish going through and purging the remaining passwords created under the old system.

Man, I hate sites that don't provide an easy and secure way to change your password. Some don't have the option at all on site. You have to "forget" your password and wait endlessly for a link sent to your email (crossing fingers that email address isn't the old compuserve one) and some don't even have that option; you have to contact them by form, email or phone and say, "What the heck - why can't I change my password??" Some have the option but make you jump through endless death-defying hoops, and some make you go through all the hoops only to barf up the new password without explaining why. (Frequently this is because the site failed to tell you what the password creation limitations are.) Which is why I always make sure I hang onto the old password until I've successfully logged out and back in with the new one. LastPass keeps track of the password history if it's a site you've already got in your vault, but if it isn't .... There are still a lot of very poorly designed web sites out there.

   
__________________
..
..Franca

..
Franca is offline   Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Password protecting a directory annc Web Site Building & Maintenance 4 03-04-2012 02:15 PM
FF Master Password :-( George Software 0 09-17-2008 10:41 AM
Login & password for webpage Howard Allen Web Site Building & Maintenance 18 02-07-2008 02:16 PM
Small bug changing password BinkyM How to Use the Forum 1 10-29-2005 12:32 PM


All times are GMT -8. The time now is 11:03 AM.


Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2022, vBulletin Solutions, Inc.
Contents copyright 2004–2019 Desktop Publishing Forum and its members.