You must log in or # to comment.
I don’t, I use a password manager.
So do you generate a random password for each site? I use password manager too but it doesn’t always work with some sites and across devices.
In the extremely rare case where a password won’t autofill, I will manually copy and paste it. I’m absolutely not in the business of remembering more than one password anymore.
Edit: and I’ll use passkeys instead if they’re available.
Not the previous commenter but like them I use a password manager to create unique & random password for each site (with enough characters and including numbers and symbols).
Yes, I use Vaultwarden, and I have encountered very few sites where it didn’t work. Usually those are crappy sites to begin with that barely work in Firefox so I tend not to use them.
I have Vaultwarden set on the passphrase setting, based on this XKCD comic: https://xkcd.com/936/ So any new password is a set of random words with some numbers and special characters in between.
That might be a better answer to your question :)
Go to the password manager and generate one. Then memories it.
I have a random passphrase, I know it in multiple languages, and I’ll add the name of whatever service requires the password. No password manager required.
and I will preferentially use my Yubi key wherever possible.
But then the passphrase would be the same across different sites? If one site breaches the password then your other accounts would be at risk.
that’s the point of knowing it in different languages, I only need to remember CorrectHorseBatteryStaple but it can be totally different for however many different languages I can translate it into and of course the service name which I can have simple rules for inserting at the beginning, end, or between words.
But again a hardware key is always my preference.
So what if correcthorsebatterystaplefacebook gets leaked? You think a hacker won’t try correcthorsebatterystapleinstagram etc? You have one password for all sites with barely any extra steps
Why not have a password manager which you unlock with (a different) easy to memorize but long enough password instead and truly random passwords?
barely any extra steps
you have 5 attempts to get it in the right place (in this case), if this one is even in english (hint: if you don’t get locked out after 3 attempts it probably won’t be), if I don’t split compound words and treat them separately …
all before 2fa and the fact I’ll use a yubi key over any of that shit in the first place if at all possible.
Yes, and so do you. Or are you going to remember for each site which language and position it was?
you’re literally just remembering 1 password and some simple rules to obfuscate it.
people used to remember multiple whole phone numbers without issues.
Either it’s simple for you and anyone reading one or two of your leaked passwords, or it’s not, you can’t have simple obfuscation rules that still work after a password reset or two and aren’t easy to reverse engineer. You can’t have complex rules that are hard to figure out for potential hackers, but easy to remember across password resets and multiple sites.
That is, unless you write them down in a secure place, and then you make some application to fill them for you in your browser and… you just invented a password manager
What about length requirements and special character requirements? My mother-in-law has a paper list with six variations of the same password and another list of which site uses which variation.
Capital letters, numbers, special characters, 16 character minimums, 12 character maximums. Has anyone tried to standardize these requirements yet?
deleted by creator
Ah sorry, you add the name of the service. THat’s what I do too.
Diceware. It can create passwords that are easily mathematically provable to be strong and possible to memorize.
I use a password manager, bitwarden works for me
I create one long passphrase, and use that on a password manager.
