Password Madness!
I can't take it anymore. Managing all the passwords required these days is making me crazy. I have been somewhat leery of cloud type storage given privacy concerns and such, but at this point I ne...
Forum Discussion
Beware of using cloud based password managers. LastPass had a major breach of account holders database in June 2015. This was not the first, but one of multiple breaches over the years. The fact is you will always be vulnerable to hacks in the cloud, as there is no way to stop it unless disconnected from the NET. Hackers will always find a vulnerability to exploit. Anyone who works in enterprise IT knows this.
There is no perfect system for password protection. Personally, I would use an encrypted local solution such as KeePass password manager. Make sure to use the optional Windows Secure Desktop for master password. Then use Firefox built-in password database for regular sign ins, such as for email, membership, or shopping. Keep financial separate. Preferably, also hardening the password database by encrypting the entire Firefox profile folder. In general, opt for two-part authentication for sensitive sites where available.
I would not recommend Chrome as it uses Windows User account to encrypt passwords. If anyone has your account credentials, they can read the passwords stored in Chrome. Firefox uses a separate master password for encryption, but separately encrypting the database offers better protection. You can do so in Chrome, but not as straightforward as Firefox.
Firefox appears to bypass the clipboard when transferring passwords. Not the case with most all other methods, which can compromise password or cloud account credentials should rootkit keylogger/clipboard capture malware be running on a system. Which may not be detected initially by even the top rated security software before damage in done.
There is no perfect system for password protection. Personally, I would use an encrypted local solution such as KeePass password manager. Make sure to use the optional Windows Secure Desktop for master password. Then use Firefox built-in password database for regular sign ins, such as for email, membership, or shopping. Keep financial separate. Preferably, also hardening the password database by encrypting the entire Firefox profile folder. In general, opt for two-part authentication for sensitive sites where available.
I would not recommend Chrome as it uses Windows User account to encrypt passwords. If anyone has your account credentials, they can read the passwords stored in Chrome. Firefox uses a separate master password for encryption, but separately encrypting the database offers better protection. You can do so in Chrome, but not as straightforward as Firefox.
Firefox appears to bypass the clipboard when transferring passwords. Not the case with most all other methods, which can compromise password or cloud account credentials should rootkit keylogger/clipboard capture malware be running on a system. Which may not be detected initially by even the top rated security software before damage in done.
