Ask HN: Alternatives to a password manager?
It seems that one of these types of post surfaces every month or so, reminding us of the dangers and security issues surrounding passwords/backups/dependence on cloud sites and what happens when things go wrong.
The classic tradeoff with passwords is one between security and convenience. I used to use a password manager briefly, but it was too inconvenient (mobile access + access on other computers).
Who uses a password manager? If you don't use a password manager how many passwords to you keep? Does anyone use a scheme for keeping passwords?--for example, given the website you can figure out what your password is based on some rule.
I'm thinking of switching to that last one--are there any strong reasons not to, or better ways to keep passwords if I don't want to use a password manager?
7 comments
[ 2.7 ms ] story [ 26.3 ms ] threadThat said, two factor for anything of critical importance (in my case, gmail and work email).
1. Choose you paraphrase - something like "I like long walks on the beach after seven"
2. Take the first letters to give you something like this: iLLwotBa7
3. Throw a symbol on the end: iLLwotBa7?
4. Append a 3 letter site name acroym in a similar way to the phrase (I use 3 for consistency): iLLwotBa7?hkn
5. Throw on another symbol: Append a 3 letter site name acroym in a similar way to the phrase (I use 3 for consistency): iLLwotBa7?hkn!
That's what I do, so I only have to remember the 3 letter for each site. Here's some more: Reddit - rdt, Gmail - gml, etc.