Collaborate Disseminate
It is reported that it seems people are brute forcing the lastpass database and extracting cryptocurrency seeds.
A basic functionality of LastPass is that it will pick and remember lengthy, complex passwords for each of your websites or o… Continue reading Is there a good reason offline brute force attacks work on the lastpass database of random passwords? [closed]
Is it possible to set a pattern for creating passwords or username just by simple regex? And it this a good idea?
Can I extract a dictionary list from the keepass password generator as my senior forgot his master password?
Continue reading Extract Keepass password generator dictionary [closed]
With passkeys, you no longer need to use a password to log into supported websites. Here’s how to use them with password manager NordPass. Continue reading How to Go Passwordless with NordPass Passkeys
Anecdotally, I’ve noticed that many people’s WiFi passwords (based on visiting their homes, etc.) don’t seem terribly secure; they’re usually fairly short and don’t always contains numbers or special characters. Based on my knowledge of ma… Continue reading How important is it for WiFi passwords to be secure?
I recently ran an account security check through my bank’s web site, and my bank "reassured" me that I have a strong password.
Should I be concerned that they know that? I had assumed that they only stored a (hopefully salted) ha… Continue reading Should I be concerned that my bank told me that I have a strong password? [duplicate]
I have stumbled across passwords on a MySQL database behind a PHP webapp. Here are some examples.
753a524d56b48d825328ce27
789e0ad30d15
7ba0868c23e0a2
d327e265ca2abcd7c
48276b3d5618850
bffaa9b3ba92ffc3
21614da133d56e72857c
44d2059e642f9733… Continue reading What are password encryption schemes that result in variable length common in MySQL and PHP?
Let me ask to experts how bank BBVA and Santander en EspaƱa can check dedicated digits of my password during call to their hot line?
They said me that it is verification procedure but I am not sure it is safe because every call they ask di… Continue reading Bank employees asked random 2 characters of password during verification! [duplicate]
For Enterprise, how to know if Edge Password AutoSave is less secure than copy/paste to a desktop password manager which is open source?
IMHO Edge should be more secure because:
copy/paste has security drawbacks
Edge (Enterprise grade) up… Continue reading Is Edge (Enterprise) Password feature less secure than open source local password manager? [closed]
When I came to the topic of Ansible (Vault), when deploying secrets in Ansible and other passwords up to 128 characters Shamir’s Secret Sharing would be an ideal solution I think:
The secret is never in one spot
The secret can be encrypte… Continue reading Why don’t basically all "clusters" and similar distributed systems use Shamir’s secret sharing method? [migrated]