Password Management

Important advises

• To save your credentials and other impartant data, use keepassx.

• Use different passwords for your online accounts.
• Whenever possible, activate multi factor authentication (MFA) - even if this is pain at the beginning, as soon as you have been hacked, you will change your mind.
• Save your passwords in a secure way (not in .docx or .xlsx or whatever).
• Take care that you have access to your personal credentials, even if there is no internet available.

FAQ

• Q: Why different passwords?
  • A: If a hacker get's your password, the first thing he will do is to try the capured password on all major online services (gmail, whatsapp, spotify, ...)
• Q: Should I use an online password service like lastpass, 1password, ...

  • That's your decision. Some of them have been hacked already (Lastpass hacked)

• Q: Is it ok to save my passwords in the browser?
  • A: This is a personal decision and no clear yes/no. You definetly should use a strong master password.
• Q: Is it ok to use Mac OS X Keychain or Microsoft Windows Credential Manager?

  • A: This is fine with one added requirement: you should have an offline backup! Just imagine your Apple ID or Microsoft account will be locked by Apple or Microsoft! You will not be the first person and it is really really hard to get the account back (Microsoft sperrt Account)

• Q: What is your advice to manage passwords?

  • A: Use keepassx.