Okay.
See here’s the thing:
You have to remember:
- BIOS password (you’re supposed to set one, right? I mean… so your that sibling/roomate/kids/family doesnt mess around and replace your OS with a malicious OS)
- Full Disk Encryption password and then finally
- The user password
Like that kinds breaks my brain
Do y’all just put those in your password manager… then only have to remember
- Master Password to password vault and
- Phone lockscreen
Is this the “Standard Operating Procedure”?
But if you are paranoid and set a full alphanumeric password/passphrase… then you have to remember two differen passphrases…
Or couldn’t you just simplify it to like just ONE, like:
Can you have the same password for Phone Lockscreen as the Password Vault Master Password?
So that you Only ever need to remember exactly ONE password
Is this a good idea?
My head hurts from this…
Idk how to do this…
I wanna simplify my digital stuff… my stuff is so disorganized…
Password managers are best for accounts that can be accessed from anywhere.
For device specific passwords I do have those passwords stored in my vault but those are ones I remember because I need them to access the vault to prevent a chicken and egg problem.
You should not use lockscreen password as your master password. Chances are, your lockscreen password is much simpler than your master password. Reason why you can get away with it is because your mobile devices usually have some form of well-integrated isolated environment that can throttle brute force attacks. Your password managers probably cache your vault offline, which may be vulnerable to brute force attacks unless it utilises TPM in some way. Same goes for FDE. Online vaults probably have some sort of rate limiting so that isn’t much of an issue.
One thing I strongly recommend is being realistic with your goal. Current scheme seems a bit too paranoid.
Other way around I mean.
Like use a 8 word passphrase (not saying I use 8 words just an example) for the phone lockscreen and the master password.
Everyday unlock is just use the biometrics so I don’t have to type it, and I disable biometrics if I’m in an unsafe environment)
Or maybe this is just paranoia… is it okay to juse use a short pin for lock screen?
I mean I read about cellebrite and all that stuff… they say to use alphanumeric password for lockscreen to make it harder to get into…
That’s fine as long as you’re okay with typing it in every now and then. I would find it tedious to be honest. Past a certain point, additional security is meaningless.
I mean my thought process is:
If both phone lockscreen and master password is the same… (8 word passphrase) and I have to enter lockscreen password every reboot… then I’d never accidentally forget the master password…
Entirely unrelated, but when did xkcd add all those goofy modes in? I just spent more time playing with those modes than I have on their site in a hot minute
I noticed it like last week, but it’s been a while since I visited XKCD back then. Probably recent.
What phone are you using?
Edit: I hit enter too quickly.
The reason I ask is some phones can make a pin very secure. For example, Pixels’ security chip will rate-limit how often a new pin can be entered. So a 6 digit pin has one million combinations and after the 139th failed attempt only one pin can be tried within a 24 hour period. This will take 27 years to enter just 10% of the possible combinations.
I have an iPhone that the carrier gave me for free as some sort of promotion thing, and I have a secondary android phone (Motorola) for using some FOSS stuff and sideloading since iPhone doesn’t allow it.
Right now I’m just remembering 2 lockscreens… but maybe I’m just gonna focus on trying to remember the main one then like put the other lockscreen into the password manager.
I use the old school method. Each password is a combination of my one preferred password, and three words that relate to the subject but are too funny to forget. For instant, Amazon would be “FuckJeffBezos123456Aa*” or something like that. I only have to remember my version of the “123456Aa*” because every time I think about amazon I already think “fuck Jeff Bezos”.
This uses your mind’s natural ability to associate instead of just raw memory. It also guarantees your passwords always meet requirements.
Lastly, record them all in the meat space in a small journal that I place in a conspicuous place. You can’t hack a notebook and I’m not important enough to rob for access to my Lemmy account.
Yeah… I don’t trust notebooks…
My grandma sometimes forgets to turn off the stove… the notebook becoming ashes is an inevitability… (house on fire)
1 Notebook = 0 Notebook
3-2-1 Rule dictates 3 copies across 2 types of media (usually referring to disk and tape, but that’s not very applicable to writing) with 1 kept off-site. I suppose you could treat a photo of the written password sitting on a digital picture frame to be at least as unhackable as a notebook…
I mean at that point, you might as well as use a password manager… which then you can more easily back up the database… 🤷♂️ I mean are you really gonna take a picture every time you update it? Not very steamlined…
Proper password managers truly are superior
Tatoo on inside of butt cheek.
OMG MORTY YOU HAVE TO LOOK! I SWEAR, I’D NEVER JOKE ABOUT SOMETHING LIKE THIS!
If you have your (encrypted) password manager file backed up to one or more otherwise unencrypted media, then remembering your master password will be enough in a pinch. But yes, for day to day password handling you’d want to have a few more memorized, e.g. the ones you’ve mentioned. As those are passwords you enter daily, it’s usually not much of a problem, especially if you use memorization techniques.
I feel the same. Same with backups. I have like 15 hard drives. Its so hard to do it all. Especially with ADHD and insane hard drive prices now.
I wanted to archive every movie, tv show, anime, game, like everything…
But that’s gonna cost too many hard drives and brain capacity to do the downloading, organizing, checksums to make sure they don’t get corrupted… etc… its gonna cost too much money and my sanity just to keep up with it…
So yea I kinda gave up on it and hope there is always a copy “out there somewhere” when I need it…
I only backup photos, writings, and that stuff, much smaller files, easier to manage…
I feel very similar. Trying to get all old console games before they all get taken town , Minerva’s archive is already gone. I’m sure v1m is next.
I wish i know more how to get into data hoarder groups to share data. But how to make them trust you? That parts hard. I guarantee there’s lemmings out there with 50 tb nas full of every game known to humans.
They want to take it all away from us to charge us a subscription to play 30 year old games and enjoy any media. And when they kill search and websites, the only "internet " that will be available will be an llm chatbot search, at $50 a month for 100 prompts of course. 10 additional dollars per prompt.
And since llms killed any entry and junior coders, there will be no one left learning coding or anything to bypass this. As the old knowledgeable ones die off, the youngs will have outsourced all thinking to the gibbity. And you will own nothing.
I see zero way the future doesn’t become this reality. What a shitty future !
I need to sit down and have a serious thought about redundancy and what I want to keep long term. I want to leave little portable drives with an encrypted backup of my family photos with all my relatives so I can restore them in the case of a catastrophic failure that includes all local backups (like a huge fire, an earthquake, war, famine, see etc.). Essentially like sending duplicate or triplicate physical photos to relatives in the old days so they can send a copy back if needed. This is addition to a normal backup. Essentially in case the US falls apart.
Like you, I’ve also been collecting other media of interest to me. I would have plenty of space for Atari games, but I can’t imagine spending the drive space to archive every game in my Steam and GoG libraries or every GameCube game. If you have a generous 60 TB of space, that becomes 30TB really quick with redundancy. With a single offsite backup, that becomes 20TB and with 2 backups and redundancy that’s only 15TB or usable space. Granted I’m not factoring in compression, but at today’s prices buying 3 extra gigs for every usable gig practically requires a mortgage. If we could have $14-15/TB again I would probably buy another 2-6 drives right off the bat just to complete my build and be somewhat future proofed.
I’m also concerned about things that need updated. I need working images and copies of my systems and programs that I can restore to if the internet goes down or gets locked away.
Phone is a 6 digit pin.
I find passphrases very easy to remember. I have different ones for my laptop, external hard drives, Proton, Tuta, and password manager.
I find it helpful to make the passphrase an insult toward a company or group such as “go away piggy this is mine”.
At a job I hated, they made us change passwords often. It was quite irritating. I also think it was counterproductive because something like fuckcorporate!666 is likely more susceptible to a dictionary attack than a carefully chosen password rotated less frequently.
At my job now, we have to change our password so often with such onerous requirements (16 char, alphanumeric, at least one upper case, at least one lower case, at least one symbol, no repeating characters) that I have to store my work password in my personal password manager with much more lax requirements. What the fuck kind of security is that?
Security theater in action.
I bet half your co-workers have a post-it stuck to their monitor.
Almost certainly some of them. I enjoyed hearing that insults and trash talk are still the norm for corporate passwords you have to remember! :D
I use a password manager so I don’t have to remember all of the hundreds of passwords that online services insist I set up. Each one is unique and complex, unguessable … and there’s no way I could remember them all. Before the password manager, I would find a good password and use it for many/most places, meaning that if anyone was careless and leaked my actual password, then someone would effectively have all my passwords.
But to answer your question, yes, for apples implementation, your normal account and phone unlocking also unlock your passwords. Depending on settings, you probably need to use your biometrics each time
