Interesting Links for 27-07-2015

Jul. 27th, 2015 12:03 pm
andrewducker: (Default)
[personal profile] andrewducker
Tags:
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2015-08-01 07:29 am (UTC)
birguslatro: Birgus Latro III icon (Default)
From: [personal profile] birguslatro
I'm in two minds about password managers. I know they'll do a better job than a human, but what if your laptop or whatever gets stolen - or is accessed while you're away for ten minutes?

Date: 2015-08-01 01:45 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
At my work it's an offence to not lock your laptop if you step away from it...

Date: 2015-08-01 07:53 pm (UTC)
birguslatro: Birgus Latro III icon (Default)
From: [personal profile] birguslatro
Well yes, but what about at home?

It's obviously easier to break one laptop password on a machine you've stolen than that password + X hundred web passwords.

Having your device stolen isn't the worst thing digitally that could happen to you.

Date: 2015-08-01 07:55 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
Absolutely.

But the alternative is to either have your passwords be memorable (and mostly the same, unless you can remember dozens of passwords).

Having a bunch of different passwords, all kept behind one very secure one that you use nowhere else, strikes me as better than that.

Date: 2015-08-01 08:06 pm (UTC)
birguslatro: Birgus Latro III icon (Default)
From: [personal profile] birguslatro
That approach would only work if your OS is as secure as your password... :)

Date: 2015-08-01 08:28 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
Why?

Password Managers encrypt all of your passwords, so you have to get through its password before you have access to anything.

Date: 2015-08-01 09:51 pm (UTC)
birguslatro: Birgus Latro III icon (Default)
From: [personal profile] birguslatro
If you could bypass the OS's password because the OS is broke, all those accounts behind the password manager would become accessible.

I've never forgotten my OS's password, but people must forget them, right? I very much doubt that totally bricks a device, which suggests there's a way in for technical types to reset the password when the forgetful take their devices in to be put right again.

Date: 2015-08-01 09:53 pm (UTC)
andrewducker: (Default)
From: [personal profile] andrewducker
"If you could bypass the OS's password because the OS is broke, all those accounts behind the password manager would become accessible."

No, because the passwords are encrypted by the password manager.

"I've never forgotten my OS's password, but people must forget them, right? I very much doubt that totally bricks a device, which suggests there's a way in for technical types to reset the password when the forgetful take their devices in to be put right again."

With centrally controlled systems, yes. Because they had admin rights to the authentication servers. For your home PC? You're into a reinstall situation.

Edit: And in any case, getting past the OS wouldn't give you access to the passwords, as the Passwords Manager won't let you in!
Edited Date: 2015-08-01 09:54 pm (UTC)
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Profile

andrewducker: (Default)
andrewducker
My NotZen Website

May 2025

S M T W T F S
     1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 192021222324
25262728293031

Most Popular Tags

Page Summary

Active Entries

Style Credit

Expand Cut Tags

No cut tags
Page generated May. 19th, 2025 05:30 pm
Powered by Dreamwidth Studios
OSZAR »