[lug] password generating techniques

Davide Del Vento davide.del.vento at gmail.com
Wed Mar 21 09:41:18 MDT 2012

>> 4) use a password manager like Kevin suggested
> I use an encrypted file, but it isn't a "password manager" as I'll be
> relying on people's ability to write good software.  I don't have much
> faith in that.  :)

This technique might be more secure than using the password manager,
but it has all the inconvenience of it: how do you manage this file?
How can you be sure to be using only and always the latest and
greatest version, etc.

> Certain passwords, like Amazon, are easy to remember, and aren't
> randomly generated.

I am not talking about that (I should have made that clear). I'm
(mostly) talking about password for shell access.

>> 6) write the strong passwords on a piece of paper
> I print out my encrypted file and store them in a vault at a bank in case.

How often do you go to the bank? How often do your server enforce the
need for password change? Even if I substitute "fireproof safe at
home" for your "vault at a bank", this would be too inconvenient and
thus my piece of paper will quickly become stale.

More information about the LUG mailing list