Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
hey folks, i need a little bit of your help in figuring out how to store my user names and passwords on internet.
I create, just like you, a lot of accounts on web. But like many of you I sprint between multiple multiple computers, so it's hard to organize my usernames and passwords in one place (not practical). So I am seeking your help in knowing how you do it. Do you store yours' on your machine, or on web? If on web, how? How do you store that on web?.
I must also note that I am not asking how you store your root passwords or financial passwords, but it's about how you securely store a lot of web accounts you created.
Thanks.
PS: Sorry, I edited this post multiple times.
Not *quite* what you're asking, but ... I'm using MyPasswordSafe (which
uses the same file-format as Bruce Schneier's (Counterpane) passwordsafe
for windows, and I store the (securely encrypted) file in a mailbox in
an online account :} ... the only problem is I have to change it every
time I edit. Not too much hassle, mind you. And when I need a password
my browser will open the web-based file with the application above.
Buy a plain paper notebook, something you can carry easily (even if you don't move it a lot), and write down your accounts.
It's not a trendy solution, but it is not bothered by hard disk failures, overwritten installations and other types of computer damages. You have to keep it safe from fire and water, but this is something that paper has in common with computers.
In all honesty, even though browsers and email applications do a good job at storing passwords, I have found it extremely helpful to have all login names and passwords written in one place. Once I had a very bad loss of data situation - that paper notebook saved me a lot of time recreating my working PC environment.
And how SAFE is it when the notebook gets snaffled? What encryption method
are you using for that?
Let's assume you're on a crowded airport with a notebook (computer) and a notebook (paper). Which one is more likely to get stolen? Make a guess!
But you may think your PC is more safe. I mean, how difficult can it be to boot a stolen laptop with a LiveCD and gaining root access, and then getting into your web browser with all the stored login names and passwords for all your favorite sites and maybe even for your credit cards or bank account? The same for your e-mail application and favorite FTP tool and your saved SSH settings and everything else ...
Ever been in a large office, where all employees have stickies on their monitors with their passwords? Wouldn't it be at least slightly more secure if they would rather have small pocket notebooks (paper) and keep that in their jackets?
The history of Mathematics has actually a lot of solutions available to encrypt written text, so there are plenty possibilities for people who's handwriting is too easy to read. I'm lucky, my handwriting is pure encryption by default to most people on this planet.
Moleskine notebooks have a very nice tradition, check it out on http://www.moleskine.co.uk/ as an alternative to bits and bytes.
Well,
I didn't ask for a paper solution. I am paper-free.
I am trying to figure a way out to store my low important usernames/passwords online. One thing I thought about was an account at blogspot. Just create a post, but do not post it. That way you could always log into blogger and access your stuff. But I have my own problems with blogger, though
Let's assume you're on a crowded airport with a notebook (computer) and a notebook (paper). Which one is more likely to get stolen? Make a guess!
Depends on the "storage mechanism" chosen for either.
Quote:
Originally Posted by simplicissimus
But you may think your PC is more safe. I mean, how difficult can it be to boot a stolen laptop with a LiveCD and gaining root access,
Quite hard. BIOS password, ASIC encrypted HDD using password.
Passwords stored in password safe, none in the browser accessible
w/o the use of (needless to say) very complex master password.
To get the machine to let you in you need to replace the security
ASIC (costs around 200$) and you need to be VERY good with the
soldering iron, otherwise you render the machine useless. And
the data on the HDD will remain inaccessible, because it only
works the ASIC you just removed and the password combined. I
think the chances of anyone getting into my machine when it's
not turned on, the screen open and me nowhere near are very remote.
Quote:
Originally Posted by simplicissimus
and then getting into your web browser with all the stored login names and passwords for all your favorite sites and maybe even for your credit cards or bank account? The same for your e-mail application and favorite FTP tool and your saved SSH settings and everything else ...
See above. Not an issue.
Quote:
Originally Posted by simplicissimus
Ever been in a large office, where all employees have stickies on their monitors with their passwords?
Wouldn't it be at least slightly more secure if they would rather have small pocket notebooks (paper) and keep that in their jackets?
Seen that, clear breach of most places policy, and I'd
certainly ask them to stop that. And if I caught our
users using notebooks I'd tell them off, too.
Quote:
Originally Posted by simplicissimus
The history of Mathematics has actually a lot of solutions available to encrypt written text, so there are plenty possibilities for people who's handwriting is too easy to read. I'm lucky, my handwriting is pure encryption by default to most people on this planet.
I didn't say it's impossible to make notes on paper hard to
decypher. I was asking how well you thought that stacked up
to electronic encryption.
Quote:
Originally Posted by simplicissimus
Moleskine notebooks have a very nice tradition, check it out on http://www.moleskine.co.uk/ as an alternative to bits and bytes.
Well,
I didn't ask for a paper solution. I am paper-free.
I am trying to figure a way out to store my low important usernames/passwords online. One thing I thought about was an account at blogspot. Just create a post, but do not post it. That way you could always log into blogger and access your stuff. But I have my own problems with blogger, though
gmail & drafts ;} ... and using Schneier's algorithm it's quite
safe, no matter how much time a google employee may spend snooping
on your mail (if they do).
Would carrying your whole browser around with you work? Check out Portable Firefox. It's for Windows, but one could surely knock something up for Linux as well. Kind of halfway to booting from USB.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.