First of all, get a password manager such as Lastpass (TWiT sponsor), 1Password, or Apple's Keychain. Any password manager is better than no password manager. Secondly, it might be a good idea to create a backup (like your important computer files) of those strong passwords in case something goes wrong with accessing your vault of account information. Maybe make a USB key of passwords and store it in a super safe and secretive location at home just for worst-case scenarios regarding your master password.
Jane has a ton of passwords and needs a password vault to keep them all straight. She was looking at LastPass and wants to know if that's the best one. Leo loves LastPass, and they are a sponsor on the show. He has been using it for ten years and it's very secure. But it's not the only option. There's also 1Password, KeePass, and DashLane.
Leo says there's a new feature in Android Oreo 8.1 — it will let you know how fast a Wi-Fi access point is before joining it. Leo says any password vault should enter his password into the web portal when he signs in. Leo prefers using password vaults to any mechanism offered by the browser or phone itself. Password vaults will remember all of his passwords, and on Android, it will actually fill in the password automatically.
Jason wants to know if using a password manager on a mobile phone is a good idea. Leo says absolutely. It will keep track of all his passwords so all he needs to do is remember one. Leo likes Last Pass, but many iPhone users prefer 1Password. Both are equally good. There's also DashLane. Any of those three will do the job. He should just make sure he creates a difficult password to crack, but one that he can remember.
Andrea's mother has problems remembering her passwords. What's the best way to do it? Leo says we all have a problem remembering them, and if it's easy to remember, there's a good chance it will be easily cracked. She'll want her password to be difficult, but by extension, that makes them difficult to remember. Writing them down isn't a bad idea as long as nobody has access to them. A password vault would be a good idea, where she would let the software generate all of her passwords and all she needs to remember is the master password.
Brian has tried several password vaults and he finds them all inconvenient. His frustration is that using his mobile device doesn't always work so well. He ended up on LastPass. Is that a good choice? Leo says yes. It's the one he uses. 1Password is another one, and it has the advantage of being able to save the vault somewhere else.
Mark wants to know if password vaults are safe and what the best one is to get. Leo says yes, they are best because they generate impossible to remember passwords and keep track of them, so Mark would only have to remember the one password to open his vault. Leo uses LastPass. There's also 1Password. It's a valuable tool that everyone should use.
Mark was using the same password for every site he went to. Leo said that he used to do the same thing. The importance of password security has snuck up on us, and we should all really be using a password vault like LastPass or 1Password. The main important difference between LastPass and 1Password is that LastPass keeps your vault on their servers, whereas 1Password gives you control over where the vault is stored. Each are very securely encrypted.
Yogi uses a text file to store all his passwords. It's encrypted, and his passwords are randomly generated. He then cuts and pastes the password to enter it. Is that safe? Leo says yes. If his computer has a key logger, it can't read a cut and paste like it can his typing. An easier way, though, would be a password manager like LastPass or 1Password. Steve Gibson also has a password generator at grc.com/passwords
Kevin is looking for a password vault or manager to store all his passwords. Leo says that the best password is long and strong, with random characters, letters, and punctuation symbols. But he'll never remember it. That's why Leo recommends LastPass, which can not only generate the passwords, but also can keep them safe. 1Password is another. This also creates a single point of failure, though. There's nothing wrong with having a notebook that he can write them down in.