Over the years of using PC, studying network security, and practicing, I've come to the conclusion that a password manager is a necessity. What password managers do I use?

🔸NordPass - a good cross-platform cloud-based manager (paid).

Y'all know me, still the same ol' G

DeBank- sdbs
Lens - sdbys

🔸Bitwarden - alternative, great for teamwork (paid)
🔸KeePassXC - open source solution, allows you to store your database locally (free)

As for password complexity, my rule of thumb is 16 characters (uppercase, lowercase, numbers, special characters)


An example of a strong password: ZLX%%pfmc76t84LB.


According to reports by Hivesystems, a cybersecurity company, such passwords are almost impossible to crack in a reasonable amount of time

According to reports by Hivesystems, a cybersecurity company, such passwords are almost impossible to crack in a reasonable amount of time

https://www.hivesystems.com/blog/are-your-passwords-in-the-green?utm_source=tabletext


I divide passwords into two categories:  

1️⃣Those stored in the manager (subscriptions, services, work accounts). 
2️⃣Memorized (crypto wallets, mail, important security factors).  

Why is it important to know some of your passwords by heart? 


It's a balance between security and convenience.

For example:

I have crypto wallets automatically locked, and it is inconvenient for me to search for the password in the manager every time

🔸Code phrase - it's always in my head and should never be forgotten


🔸Password from the profile in the OS - I always type it by hand and do not use FaceID, TouchID

When it comes to security you should rely on yourself first and foremost. Your most important passwords should be in your memory, not just in your password manager


And what if it is unavailable at a critical moment? Our memory is the best backup password manager.

Let's summarize the security model:  

✔️ Time-tested password manager. 
✔️ Strong passwords of 16 symbols for each service. 



✔️ A separate category of passwords that I know by heart to quickly gain access to important resources.

There are other proven password managers, you can use any of them. The key factor is time: the older the company and its product, the higher the trust.


🔸Master email - if access from someone else's device is required, I don't want to depend on third party services.
🔸Password manager - it is logical that the master password should be in my head.

