If you are two cheap to do this, then ignore what they say about no duplicate passwords. One for banks and credit cards and bank like things. One for paypal and internet things that involve money but are not banklike. One for social media like facebook and twitter. One for email accounts. One throwaway for logging in on blogs and the NY Times and so on. So now you keep 5 logins and 5 passwords. If you want you can even keep all 5 user names the same and just have five passwords. When they make you change your password just increment it. Yeah security people will hate me for suggesting this. security people also admit that having more than five passwords is absurd. And yeah the incrementing thing is risky too because hackers know most people do this. But human memory has limits so I see the need to do this as screwup by security system designers, not the users who want security that lets them get their work done.
If you want really good security on the level security experts want
you have then use password vault or similar services. (Jordan and Shag
can probably suggest the best ones) Otherwise work around the security
requirements to keep your passwords managable and live with the fact
that you don't have the best possible security.
On Wed, Mar 21, 2012 at 4:54 PM, Jordan Hayes <jmhayes at j-o-r-d-a-n.com> wrote:
>> 'security' questions
>
>
> One thing that I've found helpful to consider with these sites is that it's
> not terribly unlikely that an attacker who knows you could have the real
> answers to these questions. So I basically make up new questions, and take
> note of them. If the questions are:
>
> - What's your favorite color?
> - What street did you grow up on?
>
> I turn this into:
>
> - What's 3 + 15?
> - What do you call your neighbor when he's not looking?
>
> And give the answers:
>
> 18
>
> and
>
> Asshole
>
> Now, when they ask you: what's your favorite color? You can answer: 18.
>
> /jordan
> ___________________________________
> http://mailman.lbo-talk.org/mailman/listinfo/lbo-talk
-- Facebook: Gar Lipow Twitter: GarLipow Solving the Climate Crisis web page: SolvingTheClimateCrisis.com Grist Blog: http://grist.org/author/gar-lipow/ Online technical reference: http://www.nohairshirts.com