Password fatigue solutions (was Single-signon)
David Rosenstrauch
darose-prQxUZoa2zOsTnJN9+BGXg at public.gmane.org
Wed Feb 10 11:11:23 EST 2010
On 02/10/2010 11:03 AM, Kent Borg wrote:
> David Rosenstrauch wrote:
>> I would definitely recommend PasswordMaker here too. Why save passwords
>> in a safe when you can just have an app that calculates a unique one for
>> each site?
>>
>
> Does it all reduce to having a master
> password that it permutes per web site address?
Correct.
> -kb, the Kent who has at least one online account, probably several,
> where the domain name of the web site has changed from the day he signed
> up to today.
Domain name changes are an issue with this type, but it's pretty quick
and easy to address.
> P.S. Also, be skeptical of password tools that are too automatic, they
> might open doors for entities other than you, like some rogue
> Javascript. (Javascript seems to be the root of almost all security
> holes these days.)
I'm not particularly worried. Using the same password on numerous sites
is a *much* bigger security risk.
DR
More information about the Discuss
mailing list