Best Password Manager?

[manikyath]

3 minutes ago, OGSeraph said:

I always right down my passwords, in a "secret" notebook, it works wonders!

good luck writing down a 1000 random character string

(yes, theres people who use that)

[TetraSky]

Lastpass if you want the whole "cloud" thing and "ease of access" across multiple devices.

Keepass if you prefer local storage that only you have control over, using USB drives, remote access, network file sharing and what not to carry your passwords with you,  which is not an issue if you only ever use 1 PC and there are apps that can open the database on Android as well, if you REALLY need to. (I sure don't, other than my email)

 

 

I personally use Keepass, usually with custom password ranging in length between 8 to 30 characters depending on the service/site (because some services still only have a 8 character limit on the password... which is ridiculous). 

[Prysin]

3 hours ago, Bondy3 said:

I recently found out that several of my accounts have been breached and I think its time for me to start using a password manager.  but I dont know what the best option would be.

 

Should I invest the $12 and get LastPass, or are there better options out there?

What password manager do you guys use?

get a notebook for 1 dallah and a little safe to put it in.

Handwriting is best writing.

 

2 hours ago, manikyath said:

good luck writing down a 1000 random character string

(yes, theres people who use that)

they obviously have some issues, or something to hide or both.

[Kobathor]

1 hour ago, Enderman said:

you make your passwords, google chrome saves them

insecure

 

I use KeePass 2, it's free and secure. There's an unofficial Android app too. It generates random passwords whenever you make a new entry.

[manikyath]

1 minute ago, Prysin said:

they obviously have some issues, or something to hide or both.

well, an example the LTT community is starting to know is sevadus. dude prefers 1024, 2048, or 4096 character passwords.

 

he's a special kind of special.

[Enderman]

36 minutes ago, Kobathor said:

insecure

 

I use KeePass 2, it's free and secure. There's an unofficial Android app too. It generates random passwords whenever you make a new entry.

how is it insecure

i have heard about password programs like keepass getting hacked and all the users having their passwords stolen

ive never heard of google getting hacked and having the passwords stolen

maybe because they use very good security since it literally runs half the internet??

[Kobathor]

1 minute ago, Enderman said:

how is it insecure

i have heard about password programs like keepass getting hacked and all the users having their passwords stolen

ive never heard of google getting hacked and having the passwords stolen

maybe because they use very good security since it literally runs half the internet??

dude do you know what keepass is

it's offline. you store your passwords on an encrypted file that is password protected when you open it. 

 

Also- never heard of Google getting hacked? It happened just recently with those Russian accounts. Just because they're big doesn't mean they're ultra secure with the best security.

[Bondy3]

I think lastpass is secure enough for my needs, gonna use it

[Enderman]

6 minutes ago, Kobathor said:

dude do you know what keepass is

it's offline. you store your passwords on an encrypted file that is password protected when you open it. 

 

Also- never heard of Google getting hacked? It happened just recently with those Russian accounts. Just because they're big doesn't mean they're ultra secure with the best security.

uh, yeah, and google chrome also stores it in an encrypted file

and what hack are you talking about

im using google chrome right now and its working just fine

so is google search

[Kobathor]

2 minutes ago, Enderman said:

uh, yeah, and google chrome also stores it in an encrypted file

and what hack are you talking about

im using google chrome right now and its working just fine

so is google search

 

9 minutes ago, Kobathor said:

Also- never heard of Google getting hacked? It happened just recently with those Russian accounts.

can you read English

[Enderman]

4 minutes ago, Kobathor said:

 

can you read English

yes, and you didnt even read my post, so you obviously dot know what a "source" is or what "hacked" means

[Shahnewaz]

2 hours ago, Bondy3 said:

I recently found out that several of my accounts have been breached and I think its time for me to start using a password manager.  but I dont know what the best option would be.

 

Should I invest the $12 and get LastPass, or are there better options out there?

What password manager do you guys use?

Best is brain, then a password manager.

Isn't LastPass free? I'm using it and I don't pay a dime

[Bondy3]

1 minute ago, Shahnewaz said:

Best is brain, then a password manager.

Isn't LastPass free? I'm using it and I don't pay a dime

there is a free version but I want to sync across multiple devices and platforms and specifically use some of the premium features

[Shahnewaz]

4 minutes ago, Bondy3 said:

there is a free version but I want to sync across multiple devices and platforms and specifically use some of the premium features

For mobile devices (Firefox Android) I use Firefox's built-in password manager. With a Firefox account, it syncs all your data to and from your devices.

The only reason I use LastPass because of it's aggressive password/form filling behavior. Firefox is pretty lenient and sometimes refuse to fill passwords/information on secure sites.

[Kobathor]

3 minutes ago, Enderman said:

yes, and you didnt even read my post, so you obviously dot know what a "source" is or what "hacked" means

hack1
/hak/
verb
1.
cut with rough or heavy blows.
"hack off the dead branches"
synonyms:    cut, chop, hew, lop, saw; slash
"Stuart hacked the padlock off"
2.
use a computer to gain unauthorized access to data in a system.
"they hacked into a bank's computer"
noun
1.
a rough cut, blow, or stroke.
"he was sure one of us was going to take a hack at him"
2.
informal
an act of computer hacking

 

Google's definition of "Hack"

http://thehackernews.com/2016/05/hacked-email-accounts.html

 

In Russia, some hacker dude stole ~272 million accounts. Around 24 million were Gmail accounts (Google accounts essentially because you use the same login for all of them.) He hacked the Google accounts from somewhere.

[Blade of Grass]

1 hour ago, manikyath said:

well, an example the LTT community is starting to know is sevadus. dude prefers 1024, 2048, or 4096 character passwords.

 

he's a special kind of special.

See, now that's a bit of a waste. Most password hashing algorithms will truncate your password way before that. 

[Bondy3]

16 minutes ago, Blade of Grass said:

See, now that's a bit of a waste. Most password hashing algorithms will truncate your password way before that. 

some people are just paranoid

[paddy-stone]

I have been using lastpass for years now with no problem, easy to use, change passwords, generate new passwords with specific characters eg. avoid ambiguous characters  <- my pet hate. I am now starting to use keepass also though for those times like using android, plus want to see what extra features are available over just a browser password manager really.

[ohitsluca]

2 hours ago, OGSeraph said:

I always right down my passwords, in a "secret" notebook, it works wonders!

that can easily be hacked if someone gains access to your house though

[LAwLz]

I have only used KeePass so that's the one I will recommend. Here is why I chose it over other ones:

Free as in free beer.

Free as in freedom (and open source).

Very flexible and expandable with plugins.

Very powerful and feature-rich handling of clipboards (to prevent keyloggers).

 

 

It does not have a built in syncing method if you use multiple devices. Most users (including me) seems to just use Dropbox for that. Save your database in your Dropbox folder and it will sync just fine.

 

If you decide to use KeePass, download the Professional version.

Classic = 1.X

Professional = 2.X

 

They decided to change the name because the two are not compatible with each other.

[Schlomo Shekelstein]

PayPal.com

[Textosterone]

Last Pass is what i use

[dalekphalm]

I use random password generators, then save that into a text file, which you can encrypt as needed. I then combine that with Firefox password manager, which isn't great, but it works well enough for me.

 

I've yet to make the switch to a full Password Manager. Perhaps some day.

[kasugatei]

KeePass2 is a way to go. For beginners it can be little bit difficult to obtain full automation (integration with your browser(s) etc.) and it is backdoor proof since it is open source solution. I have it on OS X, Windows, iOS and Linux and it works perfectly. I use Dropbox for syncing between platforms. Also clipboard handling is great with KeePass. 
I think that Google Chrome password manager is not a greatest thing to use because if someone gets your Gmail account, they can get all of your passwords. And Google is not prone to account theft as we could see in many cases.

To summarize it, for password managers and file encryption you should always use open source tools because then you can rely huge user base which are auditing the code and if there were some backdoors they would already find them. Otherwise you need to take a word from the company which makes the software that it is safe and without backdoors. I tend to put much more trust in a big group of people (and myself) auditing the code then to the single entity. Just my 2 cents 

[manikyath]

9 hours ago, Blade of Grass said:

See, now that's a bit of a waste. Most password hashing algorithms will truncate your password way before that. 

i guess its mostly an idiot deterrent.

 

everyone in his community knows his passwords are that long, so everyone knows its not even worth starting to brute force it, hence no one tries to brute force his passwords.