Every industry is full of technical hills that people plant their flag on. What is yours?

  • early_riser@lemmy.world
    7·
    5 hours ago

    A plain text physical password notebook is actually more secure than most people think. It’s also boomer-compatible. My folks understand that things like their social security cards need to be kept secure and out of public view. The same can be applied to a physical password notebook. I also think a notebook can be superior to the other ways of generating and storing passwords, at least in some cases.

    1. use the same password for everything: obviously insecure.
    2. Use complex unique passwords for everything: You’ll never remember them. If complex passwords are imposed as a technical control, even worse if you have to change them often, you’ll just end up with passwords on post-its.
    3. use a password manager: You’re putting all your eggs in one basket. If the manager gets breached there goes everything.
    • SSTF@lemmy.world
      2·
      2 hours ago

      I understand, somewhat, this being discouraged at work but I agree that doing it for personal passwords with the notebook at home is fine. I’ve met people opposed to ever writing down passwords and I think it’s just a rote reaction based on work training.

      If you have a notebook at home with all your passwords then somebody needs to break into your house to get them, which is pretty good security.

    • petersr@lemmy.world
      5·
      4 hours ago

      But will you be diligent enough to make a new password for every single website using this method?