April Gilford asked me an interesting question recently:
“…I need a high-security password management
program, preferably free. What can you suggest?”
If you’re in the same boat - here are 4 different ways you can go about it:
1. Use master passwords
Instead of using different passwords for different sites, try simplifying the process. Try using…
• One password only for sites which need maximum
security (e.g.
email).
• One password for sites I think can trust (e.g. Digg.com)
• One password for sites I don’t really know much about
…When in doubt - use the less secure one. This layered
system helps ensure that if any password leaks occur - it should be properly contained.
2. Lock up your passwords with KeePass
KeePass is a free/open-source password manager or safe which helps you to manage your passwords in a secure way. You can put all your passwords in one
database, which is locked with one master key or a key-
disk.
3. Generate and store hashed passwords with Firefox
Password Hasher
Password Hasher is a Firefox
security extension for generating site-specific strong passwords from a master key and a site specific keyword.
4. Export your Saved Firefox Passwords for Easy Reference
Password Exporter is a Firefox extension allows you to export and import your saved passwords and rejected sites between computers. Your passwords will be exported to an XML or CSV
file and can be encrypted if you want.
You can then use this as a reference guide stored on your
computer.
Bonus tip: These passwords were listed by PC Magazine in May 2007 as the most commonly used passwords around:
1. password
2. 123456
3. qwerty
4. abc123
5. letmein
6. monkey
7. myspace1
8. password1
9. blink182
10. (your first name)
Don’t use them :)