The Future of SELinux
thomasgal at gmail.com
Tue Sep 19 12:52:44 PDT 2006
> Occasionally, I have considered finding out how to set up an encrypted
> file to store all non-crucial passwords. Maybe even set up a few
> encrypted files to try to obscure it a little.
I've found that having a few different "security levels" seems to suit
me well. I have a couple of low security passwords for things I
generally consider "unconnected" to finance in any way, hopefully
negating the desire to have them cracked, nor the need for hoopla, a
fairly high security password for some of my more important email
accounts, and then of course custom one offs for work/finance related
matters. The nice thing at least at work is that you can go hit up IT
if you forget, banks it becomes a little more of a pain in the ass.
I've learned to look away when people type passwords from years of
working in security minded companies, but an open file called
passwords.encrypted.text is probably only as secure as IT's password,
which if it controls all the others should be very random, and rotated
often.....seems like you're back to the same thing. Ideally
multi-factor authentication will soon solve this problem....but till
then......passwords galore! Perhaps a simple password with
bio-authentication is just what you need.
More information about the KPLUG-List