the procedure is that simple
Some checks reported errors
beefhavers/how2-manage-passwords/pipeline/head Something is wrong with the build of this commit
Some checks reported errors
beefhavers/how2-manage-passwords/pipeline/head Something is wrong with the build of this commit
This commit is contained in:
parent
2c19cef962
commit
9df6cc2d3e
@ -2,9 +2,9 @@
|
|||||||
|
|
||||||
I've been saying for years to anyone who will listen, get a password manager.
|
I've been saying for years to anyone who will listen, get a password manager.
|
||||||
|
|
||||||
## alternative, inferior solutions
|
## alternative, inferior solution
|
||||||
|
|
||||||
You could pay a service like nordPass or LastPass or whatever.
|
You could pay a service like NordPass or LastPass or whatever.
|
||||||
|
|
||||||
pros:
|
pros:
|
||||||
* someone else keeps a server running for you. Meaning they worry about hardware, electricity, bandwidth.
|
* someone else keeps a server running for you. Meaning they worry about hardware, electricity, bandwidth.
|
||||||
@ -16,26 +16,30 @@ cons:
|
|||||||
* as long as they have all this data on what sites you consider important, and the frequency with which you visit them... what, are they going to *not* sell that data to advertisers?
|
* as long as they have all this data on what sites you consider important, and the frequency with which you visit them... what, are they going to *not* sell that data to advertisers?
|
||||||
* there was that one time LastPass raised their price and "coincidentally" "accidentally" found that their export function broke. which is partly the price point again, partly just some intolerable shenanigans.
|
* there was that one time LastPass raised their price and "coincidentally" "accidentally" found that their export function broke. which is partly the price point again, partly just some intolerable shenanigans.
|
||||||
|
|
||||||
|
or...
|
||||||
|
|
||||||
## Welcome the KeePassiah
|
## Welcome the KeePassiah
|
||||||
|
|
||||||
KeePass is free and open source. OSI certified, uses state-of-the-art encryption, plays well with others. amazing.
|
KeePass is free and open source. OSI certified, uses state-of-the-art encryption, plays well with others. amazing.
|
||||||
[Great Thing stamp over KeePass logo]
|
[Great Thing stamp over KeePass logo]
|
||||||
|
|
||||||
There's one flaw.
|
The original KeePass exists where Mono does - that is, Windows, Linux, and Mac. So if you're watching this
|
||||||
[note] which is bad
|
|
||||||
Most people have been trained that their cellphone is the nexus of their security and identity.
|
|
||||||
KeePass exists where Mono does - that is, Windows, Linux, and Mac. So if you're watching this
|
|
||||||
[is that David Finch? the director] on your fkn telephone!
|
[is that David Finch? the director] on your fkn telephone!
|
||||||
on mobile
|
on mobile,
|
||||||
you'll want KeePassDX.
|
you'll want KeePassDX.
|
||||||
|
|
||||||
installed? great. make a new "database". give it a really good password - it'll even help you generate one. This is the one you rehearse and memorize and practice. For god's sake don't write it on a note stuck to your monitor. Please. I'm begging you.
|
Quickstart:
|
||||||
|
|
||||||
Great. Easy. Store all your passwords. You can also "set up 2-factor". Much like google authenticator, except you get to decide which device is standing in for the "something you have" factor.
|
install one. make a new "database". give it a really good password - it'll even help you generate one. This is the one you rehearse and memorize and practice. For god's sake don't write it on a note stuck to your monitor. Please. I'm begging you.
|
||||||
[note] or more stuff. or less. whatever you want, i'm not your real dad.
|
|
||||||
|
[do we re-do the joke with Joel Haver saying photophotophotogift1?]
|
||||||
|
|
||||||
|
[note] or it can hold more stuff. or less. whatever you want, I'm not your real dad.
|
||||||
an "entry" is one account, a username/password combo.
|
an "entry" is one account, a username/password combo.
|
||||||
a "group" is a folder of those.
|
a "group" is a folder of those.
|
||||||
|
|
||||||
|
Great. Easy. Store all your passwords. You can also "set up 2-factor". Much like google authenticator, except you get to decide which device is standing in for the "something you have" factor.
|
||||||
|
|
||||||
## extra features on desktop
|
## extra features on desktop
|
||||||
|
|
||||||
if you're on a real operating system, you'll probably want 2 more features:
|
if you're on a real operating system, you'll probably want 2 more features:
|
||||||
@ -45,8 +49,7 @@ first, browser integration.
|
|||||||
[note] RIP to anyone who's employer likes microsoft, being forced to use Edge.
|
[note] RIP to anyone who's employer likes microsoft, being forced to use Edge.
|
||||||
click the cog to go to settings. scroll the left menu to find browser integration. Check to enable. check to enable tor browser, check to enable firefox, check to enable any of the inferior junk (if you partake).
|
click the cog to go to settings. scroll the left menu to find browser integration. Check to enable. check to enable tor browser, check to enable firefox, check to enable any of the inferior junk (if you partake).
|
||||||
|
|
||||||
Since LibreWolf is new, we'll jump through a few hoops.
|
Since LibreWolf is new, we'll jump through a quick hoop - if you're coming from firefox, go to your home directory, find .mozilla, copy native messaging hosts, go back up, go into .librewolf, paste. Now you can click to autofill.
|
||||||
[//TODO: rest of librewolf procedure]
|
|
||||||
|
|
||||||
[note] And I mean global, burn this into yourself across all your devices.
|
[note] And I mean global, burn this into yourself across all your devices.
|
||||||
Second: learn a new global hotkey.
|
Second: learn a new global hotkey.
|
||||||
@ -60,11 +63,9 @@ what if instead of the mobile path or the desktop path, you have both?
|
|||||||
Fortunately, KeePass databases are
|
Fortunately, KeePass databases are
|
||||||
[heavenly chorus]
|
[heavenly chorus]
|
||||||
a file.
|
a file.
|
||||||
So you are allowed to back them up and sync them the same as any other file.
|
So you're allowed to back them up and sync them the same as any other file.
|
||||||
|
|
||||||
I use Syncthing. It's great for syncing moderate amounts of things, fairly quickly. On windows you want Synctrayzor - which is just syncthing and a tray app to start with windows. Make a folder, put your password db in that, add your other device, share the folder, and voila.
|
I use Syncthing. It's great for syncing moderate amounts of things, fairly quickly. On windows you want Synctrayzor - which is just syncthing plus a tray app to start with windows. Make a folder, put your password db in that, add your other device, share the folder, and voila.
|
||||||
now you can also add syncthing to your NAS box, if you're so lucky.
|
now you can also add syncthing to your NAS box, if you're so lucky.
|
||||||
|
|
||||||
or maybe instead of syncthing, google drive. Or this episode's sponsor,
|
or maybe instead of syncthing, google drive. or Any number of offsite storage providers.
|
||||||
|
|
||||||
nah i'm kidding, not sponsored by anyone.
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user