What I care most about in a browser or any other computer tool is being able to focus on work without distraction. After all, that is what FilterJoe is all about.
In my best browsers post, Chrome 5 earned my “best browser 2010” award, thanks to speed, security, and an uncluttered interface. Since then, Chrome has released 3 more versions, with Chrome 8 released on December 2, 2010.
Password management software is a great way to manage passwords, as I write about here, here and here. However, it is possible to manage passwords quite well without software, using what I call a “base phrase approach”. The basic idea behind this method is to pick a phrase or word. Transform it into a very strong base password, to which a few letters are added for each different account.
I have been reluctant to post this article as I continue to strongly believe that using a password manager is a much better approach for most people. But having seen a few articles recently describing how to manage passwords without a password manager, I felt the time was right to complete the series on password management.
Read on for specific, detailed examples of how to implement the base phrase approach.
A year ago I wrote about how difficult it is to read text-heavy content on a computer, here. Though I recognized the virtues of E-ink, I was not enthusiastic about the Amazon Kindle as a device for reading lengthy online text due to its high expense, slow browser, and the difficulty of getting online content onto the device.
Now the price is lower, the browser is faster, and getting many forms of content onto the Kindle is easier, especially if used in conjunction with Google Reader.
Last year I wrote about the five most popular browsers, and how keeping your browser up to date helps speed, security, reliability, and compatibility (here). My order of preference in 2009 was Firefox, Opera, Internet Explorer (IE), Chrome, and Safari.
NOTE: In 2015 I posted a more current comparison of the latest browser versions, Best Browsers . . .
In 2010, the same five browsers continue to dominate the market, but my order of preference has changed. Why?
On May 21, 2010, Skyrock informed users of their social network and blogging platform to change passwords (mots de passe), because of an intrusion detected on May 19. Skyrock does not know what the intruder accomplished. If the password list was stolen, then the passwords of all 32 million users were compromised because they were stored as plaintext.
What should you do if you are a Skyrock user? What should you do if you are not a Skyrock user?
If you’re like most home computer users, you use the same 2 or 3 passwords for your various accounts and your passwords are easy to crack. As you keep reading news reports about hacked accounts and stolen identities, you think you should do something about your passwords, but you keep putting it off.
Like personal security, password management is something most people don’t think much about until after something bad happens. Unfortunately, the Internet is not secure. Just as you need to be “street wise” when venturing onto streets, you need to be “net wise” – especially with passwords – when venturing onto the Internet. Because, like it or not, your passwords are currently the main barrier between you and the bad guys.
Most password management advice seems designed to torture you as opposed to help you. For the average Joe with average security needs, password management advice needs to be simple and usable, not just secure. Luckily, there is a reasonably secure form of password management that is simple and usable. Here it is:
Securing a computer is hard. A highly skilled hacker can easily break into to your accounts or computer. But the same can be said of home security. A highly skilled thief can easily bypass a locked door or alarm system.
Most thieves are not highly skilled, and even thieves with greater skill prefer easier targets. So locking doors will discourage many thieves, and a big, barking dog will discourage even more.
The same is true with hackers – most are not highly skilled and even those who are prefer easy targets. If you are a typical consumer without data of great value to criminals, then using a password manager as I describe here can act as the equivalent of a locked door combined with a barking dog, an alarm system, and a sprinkler system – which will keep out all but the most highly skilled and determined hackers.
Unfortunately, the way most people manage their passwords can be easily exploited by automated malware or as part of larger attacks that harvest thousands of passwords. Even more unfortunately, the vast majority of advice about password management is either misguided or too complicated. In this post I explain why I believe using a Password Manager (to assign unique, random 15 character passwords for all accounts, protecting them with a strong master password) strikes the best balance of usability and security for the average Joe.
The title of this post sums up the password management approach that I believe provides the most benefit for the least effort. In the rest of this post, I explain why.
There are dozens of password managers, including some built into browsers. Many of them do the basic job you need, which is to use a master password and strong encryption to securely store your passwords. More important than selecting the “best” password manager is to use such software wisely. I describe how to use a password manager here (basics and index to password series) and here (tips).
If you’re already using and liking a password manager not mentioned in this post, by all means keep using it so long as it offers master password protection in combination with strong encryption. While most password managers offer password import and export functions, the actual practice of switching password managers and learning a new one is cumbersome.
However, if you’re selecting a password manager for the first time or dissatisfied with your current password manager, you may as well benefit from my efforts to identify the best password managers for individuals. My efforts included extensive use of two password managers and poring through hundreds of reviews, forums, and comments about many others.
In the first post of this series, I describe four steps to secure your passwords with a password manager. This post describes a number of additional tips for using your password manager software most effectively. The “Tips for Standard Use” section is for everyone. The “Tips for Extra Password Security” section is for those who need additional security, with less regard for convenience.