Michael Kjörling <2695bd53d...@ewoof.net> wrote on 20/03/2024 at 19:04:10+0100:
> On 20 Mar 2024 18:46 +0100, from p...@debian.org (Pierre-Elliott Bécue): >>>> Most of the time, writing down a password is a very bad idea. >>> >>> Not in your own home. And in any event, it depends where one keeps that >>> 'written down' password. >>> >>> And if it *does* become an issue at home, you've got bigger, more >>> immediate, problems to deal with; Of the intruder variety. >> >> You have a rather bad cybersecurity approach. And you did not do a >> proper risk assessment. > > "Writing a password down" can also be known as "using a password > manager". In that case it's "type it down". "Write it down" is not really open to ambiguity. > Which I would say is _solid_ advice for just about everyone, because > if you're doing passwords properly and have any kind of Internet > presence, you have essentially no chance of remembering every last > one. > > The requirement being, of course, that you use a trustworthy password > manager and a _very good_ password database protection passphrase. > > Learning a handful of strong passwords that you use regularly (FDE > unlocking, login, password manager, maybe another set of those for > work, and perhaps a few others) is perfectly reasonable, especially if > you aren't arbitrarily forced to change them every few months. > Committing _every_ password to memory is completely impractical. Ok, so you reply to threads without actually reading them? -- PEB
signature.asc
Description: PGP signature