Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.
The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
1. All posts must be relevant to Android devices/operating system.
2. Posts cannot be illegal or NSFW material.
3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.
4. Non-whitelisted bots will be banned.
5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.
6. Memes are not allowed to be posts, but are allowed in the comments.
7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.
8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.
Community Resources:
We are Android girls*,
In our Lemmy.world.
The back is plastic,
It's fantastic.
*Well, not just girls: people of all gender identities are welcomed here.
Our Partner Communities:
I know a lot of people are saying Bitwarden, but I've been using 1Password for 4 years and Bitwarden just isn't a viable replacment.
1Password looks much more modern and their organizational tools are not present at all in Bitwarden. I can't even sort by date created or modified in Bitwarden.
Not using a password manager is like not having locks on a house. Everyone should have one and if you don't, you're risking a lot of valuable stuff being taken from you.
password manager saves time. why not
I don't know how someone can remember secure passwords without a password manager.. My password manager 10 years ago was basically a text file. Moving to Bitwarden from LastPass the only thing I miss is easily creating a folder when saving a new credential.
I prefer blackberry password keeper
This is a hard one. So the first hurdle that I came across is with the font used for the padlock's brand. My best guesses so far have been "Elsses", "Elzzes", or "Elcces", but that doesn't really turn up anything useful. This doesn't surprise me much, though, because looking at the font of "Top Security" tells me that this is probably a pretty simple lock from a Chinese manufacturer. Given that it's probably a basic 5-pin pin-tumbler lock loaded up with standard pins, which as you can probably imagine conflicts a bit with the "Top security" statement on the face of the lock, but that's a typical thing these manufacturers do.
I also wouldn't be surprised if the shackle was made from regular non-hardened stainless steel. It's also likely that it used a regular latch on the inside instead of a ball-bearing, thus making it vulnerable to shim attacks. These two points being the most important since thieves will typically gravitate towards the quickest and easiest ways to get past security instead of taking the time to learn how to pick.
In the end, it's an image that I see has been used for a number of posts and articles relating to security online. I wouldn't be surprised if the manufacturer didn't even exist anymore today.
Oh. Sorry, you were asking about password managers. I guess I got a little distracted. I use BitWarden. It's pretty good.
Bitwarden is great, have recommended it many times. It's extremely reliable, I have easily 100+ logins stored there and it loads them all instantly. Its premium features are nice (it's also very cheap), and the export feature allows me to move to another password manager if I feel the need.
I'm probably an ignorant paranoid about them, I know I should google a bit of them, but instead I'm going for the ol' trusty ask the community.
Do they save your passwords locally or in the cloud? If locally, what if I want to sign in in another device? What if I lose the device I have my passwords on? What if they hack my device? If in the cloud: How can I know the service is not stealing my information? If I can access it anywhere, wouldn't that mean it also needs a password? Wouldn't that make it twice as unsafe as it would only take one password to access the rest?
Edit: Damn, I got extremely useful answers, I'm starting to like lemmy!
I've only used BitWarden, so this may not be a universal answer, but... you do access your password vault with a single password. Make sure it's complex but memorable. "WayneCommaAdam42069LOL!" for instance. Nobody's going to brute force that, but you'll also be able to remember it. Then once you're past that, you'll have a list of each login you save (each entry can include website, username, password, personal notes, etc). You can randomly generate a password, so that (for example) your lemmy.world password generates as "L812#zksKa01S@ks" and you can just copy/paste from your vault into the login page without having to remember that string of characters.
As for how BitWarden secures your passwords, since they're available to view after you get past the initial login... I've got no idea but a lot of people seem to vouch for it, so if BitWarden (or the other big trusted equivalents) gets compromised, we're all in a lot of trouble.
And of course, each site you log into will still have its own password recovery, 2FA, etc options. So even if something happens to BitWarden and you can't log into your bank account, you can still call up your bank and get your password reset.
I dont use password managers.
I just use a set of random words + random numbers, usually something related to the website, the time period (like major global events), maybe just the mood I'm in when I created the password.
Example: For Lemmy, I might use IslandMazeMouse0216 (I do not use the password btw, never used this before and now never will, don't try hacking me lol)
"Island" because the fediverse is like a bunch of islands, that formed together into one fediverse, "Maze" because this shit is confusing, and "Mouse" because the Lemmy logo looks like a mouse, 0216 because of June 12, the day the protest began, 0612, but reversed, but not reversing the 0, so 0 216.
Now I feel dumb for explaining, but also want to hear opinions.
But you see, it doesn't matter. Most websites have login limits so you can't really brute force the password. I just hate "password managers", if I were getting old, I'll probably just put my passwords inside a Standard Notes note, or just put it in a txt and use 7Z AES256 and upload it to a few cloud services.
For offline passwords, like a Windows Veracrypt encryption password, I use 5-8 random words with 5-7 random numbers and increasing the PIM.
For mobile, I use like 16-25 digits numerical pin, alphanumeric passwords are just too hard to type. I've been experimenting with long alphanumeric password + biometric, or a pin, and honestly idk which is better. I don't want someone accessing my phone while I'm sleeping, I might forget to turn off biometrics before I sleep.
I'm not gonna encourage everyone to do what I do, I am not a security expert, just some dude on the internet, but I just want to share how I deal with passwords. Feel free to criticize any flaws. 😅
I don't use the random generated passwords cuz they're hard to read. And some dumb forms disable copy/paste stuff.
I get all my passwords from usapassphrase.net, and then usually capitalize the words, separated by periods, with 69 appended to the end.
It's easy to remember or type, and it also typically works for password rules around casing, numbers, and special character inclusion. Plus 4 word passphrases tend to be a lot of characters, providing a nice long password which is good for security.
Lastpass for like, a decade. I can't understand how anyone can not use one.
I use Firefox Lockwise and Apple passwords. Whether or not it’s safer is a plus but I just like my passwords being autogenerated and saved, makes life easy. Yes I understand that once they have the password to that account they have all my passwords but the same could be said about an email.
I use 1Password Family to manage mine and my parents and it's great. I wouldn't do without.