password vaults

How can I remember all of my passwords?

LastPass

Episode 1401

Andrea from Long Beach, CA

Andrea's mother has problems remembering her passwords. What's the best way to do it? Leo says we all have a problem remembering them, and if it's easy to remember, there's a good chance it will be easily cracked. She'll want her password to be difficult, but by extension, that makes them difficult to remember. Writing them down isn't a bad idea as long as nobody has access to them. A password vault would be a good idea, where she would let the software generate all of her passwords and all she needs to remember is the master password.

Can I use the same password for websites?

Password

Episode 1377

Caleb from San Diego, CA

Caleb wants to know if it's safe to use the same password across different web accounts. Leo says no, because once one site gets hacked, they can use that password information to guess the passwords for other sites. Many do this, and it's how the Turkish Crime Family was able to hack over a million iCloud accounts. Password vaults make different passwords for every site and you have only one password to open the vault. But that's not on the internet anywhere, he'd just remember that. It's much safer that way.

What's the best password vault?

LastPass

Episode 1351

Mark from Sydney, Australia

Mark was using the same password for every site he went to. Leo said that he used to do the same thing. The importance of password security has snuck up on us, and we should all really be using a password vault like LastPass or 1Password. The main important difference between LastPass and 1Password is that LastPass keeps your vault on their servers, whereas 1Password gives you control over where the vault is stored. Each are very securely encrypted.

Are my passwords safe?

LastPass

Episode 1349

Yogi from Long Beach, CA

Yogi uses a text file to store all his passwords. It's encrypted, and his passwords are randomly generated. He then cuts and pastes the password to enter it. Is that safe? Leo says yes. If his computer has a key logger, it can't read a cut and paste like it can his typing. An easier way, though, would be a password manager like LastPass or 1Password. Steve Gibson also has a password generator at grc.com/passwords

What's a good password vault?

LastPass

Episode 1331

Kevin from Granada Hills, CA

Kevin is looking for a password vault or manager to store all his passwords. Leo says that the best password is long and strong, with random characters, letters, and punctuation symbols. But he'll never remember it. That's why Leo recommends LastPass, which can not only generate the passwords, but also can keep them safe. 1Password is another. This also creates a single point of failure, though. There's nothing wrong with having a notebook that he can write them down in.

Why can't I delete the phone number tied to my keychain?

Episode 1307

Chris from Miami, FL

Chris is having problems with the keychain password feature of his iPhone. He can't change the phone number associated with his keychain on any of his devices. Leo says that is a recovery feature that will send a recovery code via SMS to change his passwords. Leo says that second factor authentication is an important thing. If he has to get rid of the number, simply deleting it is what Apple recommends. They've also had trouble with keychain, though. Apple support may be needed and have them reset the keychain from their end.