You are viewing a single comment's thread from:
RE: Passwords are a Problem!
Is storing the password locally really so insecure? Malware has to get into the file system in order to access files. Keep it on a non-shared folder. Copy and paste. Now Chrome offers to save passwords for you. This is arguably more secure because it will automatically fill for you when you do go to the site you are looking for but not some other. This automated password writing prevents phishing.
Mint requires my login passw
With Facebook accounts, hackers generally go for the low hanging fruit. If we're talking about money, yes it is insecure. There was a string of thefts of Bitcoin in 2015 when hackers got local access to people's machines and used keyloggers.
Using a local file is also pretty inconvenient if you use the same accounts over many devices, including public ones. You can use Dropbox, but that introduces new risks as well.
Clipboard is also a common point of attack both on desktop and on Android, in the latter because it requires no special permissions to access.
I concede all of these points. If I had to type in my passwords, I would have to have shorter passwords. Google authenticator is something I enable where ever I can. I have heard good things about Last Pass.
It's an absolute drag. It means if my computer gets stolen, they have my passwords and I do not! If I make retrievable copies eg email them to myself or put them on dropbox etc then I have to hide them behind a really insecure password in order to know I can get them back. Which means back to square one. And as for logging on with my mobile phone so I can use Steemit on the move - forget it. Do I seriously have to type that in on a little touchscreen? And then heaven knows what a strategic mistake it is for the company to generate the password for you. There is a big fat trust issue right there, and if somehow my security got cracked, how could I trust that it wasn't Steemit itself who failed? It is my responsibility and my risk so it has to be my choice. I thought this was a minor thing, but frankly it is becoming a deterrent, especially when there is a lot of choice out there. I have no idea what buying a key means in this instance. Sounds like just another drag. Password managers etc, all very well, but I always avoided using them so far why do I want one now? Just another thing to get my head around, another barrier to use, and yes, another drag. I'm off to minds
Passwords in a file mean you also backup your passwords when you back up the file. You keep them on a flash drive and then maybe they steal your flash drive. Log into condenser.steem.vc with testuser with the password barman and try to change the master password. I created a system where you can have another password and only the active, posting and memo keys work. The owner key doesn't. You won't be able to change the master password.
Thanks, but why bother? I don't need to fill my head with this crap