I like to help out when I can, so when I was asked the other day “How do you remember so many different passwords?” I had to answer KeePass, then I had the puzzled look back, so heres my handy guide to remembering many passwords over many services in an easy way (as not even I myself can memorize millions of passwords, we are, after all, only Human heh)
So with many online services and of course many passwords to remember, ultimately most people re-use the same password over many services, which is a very bad idea, You need to use a Solution which allows you to use Different Passwords for each “service” as well as an ability to recover them if you forget them
Let me introduce 2 free products you can start using today to help you remember long and complex passwords:
—
STRONG PASSWORD GENERATOR – Added 2024-08
Check out VPN Mentor’s Strong Password Generator and use Strong Passwords everywhere, also use completely different passwords for EVERYTHING you use online, Do not use the SAME passwords everywhere, always use different passwords for each service you sign into
If you need help remembering these complex passwords, I highly recommend the following products as shown below, and ideally store the below programs on a Portable Encrypted USB Stick (examples further below) which you can take out of the USB port when not using
—
KEEPASS – For all your passwords!
Store all your passwords in a Password Manager like KeePass (https://keepass.info/) this will help with logins, as you can simply request KeePass to type in your credentials on websites, saving you the hassle of doing so – Handy eh? – You can also right-click Copy and right-click Paste into Websites and other Login Screens with ease
KeePass also has a very good “Password Generator” function, with this you can make complex passwords in a matter of seconds, ideally over 15 characters long and including a weird character or two from the numeric keys, eg !”£$%^& for example, making it harder to guess outright!
—
WINAUTH – For 2FA (2-Factor Authentication)
If you use services which have the option to enable 2-Factor Authentication, You should consider enabling them, and for that, you can use another Tool called WinAuth (https://winauth.github.io/winauth/index.html) this will then allow you to Authenticate after Login, thereby proving its really you logging into your own accounts
For added Security as well, I also store both these programs on a Removable Flash Drive, and if I am not using it, I fully unplug the USB from my PC, and I also make Monthly Backups to a Password Protected WinRAR Archive for added security
—
ANOTHER 2FA METHOD – A PHYSICAL SECURITY KEY
This is a USB (or USB-C) device which will physically plug into your Computer or Cell/Mobile Phone – this acts as a physical hardware key, which can further protect your accounts from access – These can vary in price from 30 GBP and upwards, But they provide a more secure way of verification
I bought the following products:
Yubico Security Key NFC – Two Factor Authentication USB and NFC Security Key – For websites what support Hardware 2FA – Buy at Amazon UK or Amazon US
Integral 4GB Crypto-197 256-Bit Hardware Encrypted 3.0 USB Secure Flash Memory Drive – Certified to FIPS 197, Brute-Force Password Attack Protection – Buy at Amazon UK or Amazon US
This easily fits into a small pocket, clips to a keyring for example so you will not lose it, perhaps even fits into a carry bag or coat pocket with a zip on it
PLEASE ALSO TAKE NOTE OF THIS NEW SCAM SURROUNDING 2FA:
Always remember these codes are NOT to be given over the phone
The 2FA Codes are used ONLY for logging into Websites – If anyone on the phone asks you for them, either a Human *OR* Robot Voice, DO NOT GIVE THEM OUT!
Please see this YouTube Video from ThioJoe who will explain it further:
https://www.youtube.com/watch?v=9WOLVs0oCV0
—
TIPS ON PICKING THE CORRECT 2FA SECURITY KEY
https://www.youtube.com/watch?v=WDPFARHQKNo
—
If you want further proof that using insecure passwords is okay, Please watch this YouTube video and have a look at the Graph what is shown, It is quite enlightening:
https://youtu.be/OA6gGaR5guY (Time it takes hackers to brute force an account password in 2024)
Views: 811