expired Posted by august_leo • Nov 22, 2020
Nov 22, 2020 1:54 PM
Item 1 of 1
expired Posted by august_leo • Nov 22, 2020
Nov 22, 2020 1:54 PM
Yubico: Buy Two YubiKey 5 Series Keys, Get $20 Off or Security Key NFC
$14
$27
48% offGood Deal
Bad Deal
Save
Share
Top Comments
Which of the following passwords is easiest to memorize?
1. "SlickDeals2020"
2. "4 God So Loved The World"
3. "3!dFi&m_udhUfhhaAEJ75jf@HbzOpm37lauma_25381047361"
You've probably answered #1 or #2. Security professionals (hackers by another name) have tools that generate passwords. Without getting into the details, it would be beyond trivial to crack password #1. Password #2 would take longer, but since it is a passage in a popular book, the time it would take to crack it is reduced. Either one should take less than 1 day to compromise. (The first should take less than 10 minutes)
Password #3 is sufficiently random and has a very long length. It would take even the best known supercomputers *years* to crack that password. That makes it the best password of the 3, but obviously the most difficult to memorize.
That's what a passsword manager like LastPass, 1Password, Keychain with a YubiKey is for. You can generate wildly complex pass phrases that make accessing your data out of reach for most would-be hackers and secure all of that data with a physical hardware device that stays in your possession.
Yes, I hear you: "I haven't done anything wrong; the govt isn't cracking my passwords;I don't care if they get into my acct" and so on. Cool, I get it. Do you. Just know that using your spouse's name and 4 digits makes you the low-hanging fruit for somebody learning how to hack, let alone someone who is competent at their job.
Note that you should always buy a minimum of 2, because if you ever lose a key you don't want to be locked out of your accounts. (should always have 2 associated).
220 Comments
Sign up for a Slickdeals account to remove this ad.
Our community has rated this post as helpful. If you agree, why not thank wbs3333
Password Managers: 1Password, Dashlane Premium, Keeper®, LastPass Premium | Emerging support for Lightning connector
Sign up for a Slickdeals account to remove this ad.
Password Managers: 1Password, Dashlane Premium, Keeper®, LastPass Premium | Emerging support for Lightning connector
For me, on the go access is not needed as I wont needed. With pandemic we have been stuck at home and everyone in my house use the bitwardenRs, i set up on the destkop thats running 24/7.
For me, on the go access is not needed as I wont needed. With pandemic we have been stuck at home and everyone in my house use the bitwardenRs, i set up on the destkop thats running 24/7.
Well even my work VPN uses the authenticator app for 2FA, so I am not sure if its that easy to hack someone's phone.
So all this key does is replace the authenticator app? Is it like the RSA tokens where you used to enter the keys manually in your vpn app? Now that everyone is moving away from the physical RSA tokens to app based, why should we go back to physical keys?
Generating TOTP tokens on a phone is plenty secure and much better than using SMS. Most people would be just fine relaying only on their phones, but as you can see on the yubikey page TOTP tokens is only one of many things that yubikeys can be used for.
Sign up for a Slickdeals account to remove this ad.