Announcement

Collapse
No announcement yet.

Nepomuk To See Speed Improvements In KDE 4.11

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • #16
    Originally posted by Ericg View Post
    What do you use to generate them / remember them?
    I use the terminal program pwgen (with -sy arguments). It should probably be in most distribution repositories. And then use a Firefox KWallet plugin, as well as a Pidgin KWallet plugin, to remember the passwords.

    Comment


    • #17
      Originally posted by GreatEmerald View Post
      ... Couldn't live without KWallet – for a few years now I have been using unique generated passwords for all the websites I register on and such, so that the password is always secure and even if one is discovered, nobody could use it on other websites.
      Ya, I can see how it can be useful. My main problems with that type of program in general is that centralizing passwords introduces a number of potential problems of their own. First you have to always hope that the program you use is stable and bug-free both now and after each and every future update. If something goes wrong and your password list gets hosed or an update breaks things for a few days you are stuck without easy access to anything and everything you rely on that program for. Second problem is that a lot of people don't back anything up, what happens when your hdd eventually takes a dive and you lose access to your passwords or say you do do backups but only on-site backups and you have a fire or burglary or other tragedy that separates you from your computer and backups? In either case you are stuck going to each and every site and requesting password changes. Now say someone does steal it and they find some way to get your master password, they now have access to just about everything. Of course all of these are extreme cases and mostly unlikely, but it still leaves me uneasy about relying on a potential single point of failure for my password security.

      I tend to have a dozen or so unique passwords at any one time, and some of the important ones like for system log ins I throw away and replace from time to time. Important stuff like root and user logins, websites with financial data, email/chat, Steam and even a couple games all get unique passwords, then I have a pool of several passwords I reuse for all the rest of the stuff I just don't care about. I have about 3 different logical password generation strategies I have come up with on my own that I use to make remembering unique passwords fairly trivial. It would be nice to be able to rely on some easier less hands on method for dealing with personal identifiers, but all the ones I have seen so far come with their own risks that leave them undesirable to me. I could see a potential use for all the less important stuff, but I would still want to manually enter my own custom passwords for the more vital use cases. That is a route I'll have to investigate, it could be a decent compromise.

      Comment


      • #18
        KWallet allows exporting passwords to XML. I regularly do that, encrypt the XML using OpenSSL, then put it on the cloud so that I could access the passwords (albeit a lot less conveniently) on PCs other than the one at home.

        And as for the master password, it's super long and complex, of course. I have it memorised mostly by motor memory. And it's also unique, of course.

        Comment


        • #19
          Originally posted by GreatEmerald View Post
          KWallet allows exporting passwords to XML. I regularly do that, encrypt the XML using OpenSSL, then put it on the cloud so that I could access the passwords (albeit a lot less conveniently) on PCs other than the one at home.

          And as for the master password, it's super long and complex, of course. I have it memorised mostly by motor memory. And it's also unique, of course.
          interesting. So there is no way to have it synced with android or something?

          Randomizing passwords and only having to remember a strong master one seems like a good idea. But I would prefer just to have it on my desktop and mobile.

          Comment


          • #20
            Originally posted by boast View Post
            interesting. So there is no way to have it synced with android or something?

            Randomizing passwords and only having to remember a strong master one seems like a good idea. But I would prefer just to have it on my desktop and mobile.
            No idea, I don't use Android. That said, there are many password-keeping cloud services. But in that case you need to trust the cloud provider not to steal all your passwords and keep them secure.

            Comment


            • #21
              Originally posted by dh04000 View Post
              Wait, what? I didn't know that Zeitgiest is a refactored Nepomuk. So, Gnome uses kde technology?
              Nepomuk isn't KDE technology. Nepomuk is just a set of specifications originally implemented in Java and later adopted by other projects. Gnome's Tracker also uses Nepomuk specifications but KDE and Gnome don't share the same implementation.
              Michael should've known that…

              Comment

              Working...
              X