Password Management
Important advises
To save your credentials and other impartant data, use KeepassXC.
- Use different passwords for your online accounts.
- Whenever possible, activate multi factor authentication (MFA) - even if this is pain at the beginning, as soon as you have been hacked, you will change your mind.
- Save your passwords in a secure way (not in .docx or .xlsx or whatever).
- Take care that you have access to your personal credentials, even if there is no internet available.
FAQ
- Q: Why different passwords?
- A: If a hacker get's your password, the first thing he will do is to try the capured password on all major online services (gmail, whatsapp, spotify, ...)
- Q: Should I use an online password service like lastpass, 1password, ...
A: That's your decision. Some of them have been hacked already (Lastpass hacked)
- Q: Is it ok to save my passwords in the browser?
- A: This is a personal decision and no clear yes/no. You definetly should use a strong master password.
- Q: Is it ok to use Mac OS X Keychain or Microsoft Windows Credential Manager?
A: This is fine with one added requirement: you should have an offline backup! Just imagine your Apple ID or Microsoft account will be locked by Apple or Microsoft! You will not be the first person and it is really really hard to get the account back (Microsoft sperrt Account)
- Q: What is your advice to manage passwords?
A: 1) Use KeepassXC, 2) synced via cloud storage to all of your devices, 3) activate browser integration.
- + MFA token like TOTP, Passkey can be handled via KeepassXC - No single point of failure with MS-Authenticator only binds to one device.
- - There is one database with all of your information ... if a criminal get's access to it, this is a nightmare.
- ? But is it better to use the same password everywhere or putting your credentilas in a word file in plain text?
- + Create multiple databases: one for online accounts, one for finance, ... use different master passwords.