12
Got feedback from a pentester friend that changed my whole approach to passwords
He told me my 15-character password was useless because I reused it across 4 different sites. I switched to a password manager with unique 20-char random strings for each login. Has anyone else had that awkward moment where someone professionally ripped apart your security habits?
2 comments
Log in to join the discussion
Log In2 Comments
taraj1124d agoProlific Poster
My uncle Bob has been in IT security for 25 years and he says password managers are just putting all your eggs in one basket. He had a friend who used a manager and got hacked when the manager company had a breach. Now that guy lost access to 200 accounts at once. I still use a few different passwords for important sites but I keep them written down in a notebook in my desk drawer. Physical copies can't be hacked from the internet.
2
singh.jessica23d ago
Does your uncle ever mention how many people lose that physical notebook or have it stolen, though? Seems like that's just trading one risk for another, isn't it?
-1