![]() I use a generated key in combination with a strong password. I don't store the database on any computing device but instead on a removable media. Several years later, it was declared best practice to get rid off passwords and replace authentication by other means without passwords.įor personal use, I use and recommend KeePass 2 with some additional contraints and practices as it is available across hardware platforms and operating systems. When I last researched, consensus was that there doesn't exist any secure password manager. I haven't researched the subject for a longer time. May you please clarify further? Shall the password manager and its database be shared across staff members or shall each staff member have its onw instance and own database? How do you define secure? What did you research so far and where did your research get stuck? I have a client not for profit organisation, they looking for a cheap but secure password manager for staff member. Without one, people are more likely to just re-use the same password over and over or write them down. "Just remember all your passwords" simply isn't feasible any more in all cases. That wasn't counting all my personal ones for work and home. I was doing field support some years ago and had 30 different agencies I needed to log into - each with multiple passwords. I'm glad I did, because I have that on my laptop and phone, with the authenticator app too, single click without numbers to type in every time - still MFA.Īmen to the above. I got tired of clicking "Forgot password?" and started using a password manager, i.e., LastPass as I mentioned above. Add the seven I use to have for work, yeah, hard enough to remember 25 passwords with the same "base", which you shouldn't be doing in the first place. And that's not even all the accounts I have. I just checked my LastPass account - I have 173 accounts in my vault - ONE HUNDRED AND SEVENTY-THREE - I challenge you to remember 173 passwords with 25 characters, each one unique, with or without work ones included. I'm certain there are other excellent on-prem and cloud solutions for domains out there. Where I used to work we implemented Pleasant Password Server which was a domain-level system that used a special version of KeePass if needed. ![]() I've used both KeePass and PasswordSafe and have been well-satisfied with both.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |