Put Passwords In Their Place
Would You Use a Tennis Racket to Drain Pasta?
You could…but it would be unnecessarily difficult. Yet that’s what many people do when they choose to store their passwords in a system that is not meant as a password manager.
If you store passwords in any of the following…
- a file labeled passwords on your desktop
- an excel file on your computer
- a folder in your email account
- post it notes by your computer
…your password is at risk of being compromised.
What’s Wrong With Those Types of Storage?
Well, several things. Let’s take a look one by one at each of the scenarios:
Desktop File Labeled “Passwords”
Keeping anything on your desktop in plain, unprotected text is risky. Keeping a file labeled “passwords” is an open target. Anyone with physical access to your computer has access to your passwords.
A Password Protected Excel File
Now if you decide to password protect your file which you’ve called “passwords”, you may feel a bit safer. You may have deterred spying eyes, but if your passwords are neatly organized in an Excel spreadsheet, do a simple Google search with the words “crack excel password”. Needless to say, not the safest solution.
Storing Passwords in an Email Account
Another improvised solution that has become very popular is storing passwords in your email account. It’s almost too easy not to.
You may have on more than one occasion had an email password confirmation/forgotten password request sent to you.
Naturally, an internet user’s instinct conveniently tucks that important info away within the account itself.
And if we can trust our email providers with all of our personal emails, why wouldn’t we trust them with our passwords. Answer: email providers are made to manage emails, not passwords.
Have you ever noticed the ads alongside your email account? The content of your web page (or your email) is often scanned to serve you up targeted advertising:
“Your keyword-targeted ads automatically begin appearing on relevant content sites, and on other products such as email programs and newsletters, in the Google Network.” -According to Google AdWords Help -How does contextual advertising work?
If you are storing your passwords in your email, those are getting scanned too. But let’s be honest, Google, and most email providers,could care less about your passwords. Nonetheless, if your passwords are indexed, you have to wonder: can just anyone see them?
Good Old Post-Its
As for post it notes, I hope it’s clear why not to use them – they are in plain view for just about anyone in the room to see, memorize and use.
I once read an interesting comment in defense of post-it passwords, which said - if someone were that close to a post-it on a computer, one could also worry that the computer itself could be stolen and all its locally stored passwords.
Shouldn’t be an issue if your passwords are encrypted as they should be. And post its are a whole lot easier to grab…
Get a Proper Pasta Password Strainer
If you want easy access to your passwords and you want them 24/7, having them at your fingertips is possible and easy.
That’s what password managers were built to do. And, better yet, an Online Password Manager will meet all your on-the-go needs.
When shopping around for your online password manager, look for one that:
- host-proof hosting (encrypting your passwords, leaving no trace of them behind)
- strong customer support, regular product blogs are always a good sign - keeps you in the loop
- features! What’s an application without it’s features – 1Click Login, anti-phishing, sharing
So now off you go – eat, drink, play tennis and be merry knowing your passwords are where they should be.
Byline
Louise Vinciguerra is a blogger for Passpack, an online password manager, and writes about security-on-the-web and password protection.
October 5th, 2008at 5:52 am
Good site I \”Stumbledupon\” it today and gave it a stumble for you.. looking forward to seeing what else you have..later
November 28th, 2008at 10:26 am
Nice Deal