Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.
The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
1. All posts must be relevant to Android devices/operating system.
2. Posts cannot be illegal or NSFW material.
3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.
4. Non-whitelisted bots will be banned.
5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.
6. Memes are not allowed to be posts, but are allowed in the comments.
7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.
8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.
Community Resources:
We are Android girls*,
In our Lemmy.world.
The back is plastic,
It's fantastic.
*Well, not just girls: people of all gender identities are welcomed here.
Our Partner Communities:
Bitwarden all the way. Self hosted too.
However, I really wish they would steal the look and feel and custom document types they do over at 1Password. I moved from 1Password to Bitwarden a while ago but really miss the sexy look and feel of 1Password. Bitwarden is very "linux-y"
Bitwarden.
Lastpass for like, a decade. I can't understand how anyone can not use one.
I dont use password managers.
I just use a set of random words + random numbers, usually something related to the website, the time period (like major global events), maybe just the mood I'm in when I created the password.
Example: For Lemmy, I might use IslandMazeMouse0216 (I do not use the password btw, never used this before and now never will, don't try hacking me lol)
"Island" because the fediverse is like a bunch of islands, that formed together into one fediverse, "Maze" because this shit is confusing, and "Mouse" because the Lemmy logo looks like a mouse, 0216 because of June 12, the day the protest began, 0612, but reversed, but not reversing the 0, so 0 216.
Now I feel dumb for explaining, but also want to hear opinions.
But you see, it doesn't matter. Most websites have login limits so you can't really brute force the password. I just hate "password managers", if I were getting old, I'll probably just put my passwords inside a Standard Notes note, or just put it in a txt and use 7Z AES256 and upload it to a few cloud services.
For offline passwords, like a Windows Veracrypt encryption password, I use 5-8 random words with 5-7 random numbers and increasing the PIM.
For mobile, I use like 16-25 digits numerical pin, alphanumeric passwords are just too hard to type. I've been experimenting with long alphanumeric password + biometric, or a pin, and honestly idk which is better. I don't want someone accessing my phone while I'm sleeping, I might forget to turn off biometrics before I sleep.
I'm not gonna encourage everyone to do what I do, I am not a security expert, just some dude on the internet, but I just want to share how I deal with passwords. Feel free to criticize any flaws. 😅
I don't use the random generated passwords cuz they're hard to read. And some dumb forms disable copy/paste stuff.
I get all my passwords from usapassphrase.net, and then usually capitalize the words, separated by periods, with 69 appended to the end.
It's easy to remember or type, and it also typically works for password rules around casing, numbers, and special character inclusion. Plus 4 word passphrases tend to be a lot of characters, providing a nice long password which is good for security.
I use 1Password Family to manage mine and my parents and it's great. I wouldn't do without.
I'm probably an ignorant paranoid about them, I know I should google a bit of them, but instead I'm going for the ol' trusty ask the community.
Do they save your passwords locally or in the cloud? If locally, what if I want to sign in in another device? What if I lose the device I have my passwords on? What if they hack my device? If in the cloud: How can I know the service is not stealing my information? If I can access it anywhere, wouldn't that mean it also needs a password? Wouldn't that make it twice as unsafe as it would only take one password to access the rest?
Edit: Damn, I got extremely useful answers, I'm starting to like lemmy!
I've only used BitWarden, so this may not be a universal answer, but... you do access your password vault with a single password. Make sure it's complex but memorable. "WayneCommaAdam42069LOL!" for instance. Nobody's going to brute force that, but you'll also be able to remember it. Then once you're past that, you'll have a list of each login you save (each entry can include website, username, password, personal notes, etc). You can randomly generate a password, so that (for example) your lemmy.world password generates as "L812#zksKa01S@ks" and you can just copy/paste from your vault into the login page without having to remember that string of characters.
As for how BitWarden secures your passwords, since they're available to view after you get past the initial login... I've got no idea but a lot of people seem to vouch for it, so if BitWarden (or the other big trusted equivalents) gets compromised, we're all in a lot of trouble.
And of course, each site you log into will still have its own password recovery, 2FA, etc options. So even if something happens to BitWarden and you can't log into your bank account, you can still call up your bank and get your password reset.
This is a hard one. So the first hurdle that I came across is with the font used for the padlock's brand. My best guesses so far have been "Elsses", "Elzzes", or "Elcces", but that doesn't really turn up anything useful. This doesn't surprise me much, though, because looking at the font of "Top Security" tells me that this is probably a pretty simple lock from a Chinese manufacturer. Given that it's probably a basic 5-pin pin-tumbler lock loaded up with standard pins, which as you can probably imagine conflicts a bit with the "Top security" statement on the face of the lock, but that's a typical thing these manufacturers do.
I also wouldn't be surprised if the shackle was made from regular non-hardened stainless steel. It's also likely that it used a regular latch on the inside instead of a ball-bearing, thus making it vulnerable to shim attacks. These two points being the most important since thieves will typically gravitate towards the quickest and easiest ways to get past security instead of taking the time to learn how to pick.
In the end, it's an image that I see has been used for a number of posts and articles relating to security online. I wouldn't be surprised if the manufacturer didn't even exist anymore today.
Oh. Sorry, you were asking about password managers. I guess I got a little distracted. I use BitWarden. It's pretty good.
I prefer blackberry password keeper
It's a must if you want secure passwords. My gf doesn't use one - her passwords are all re-used variations of l33tsp34k that are pretty easy to guess (I can get into her accounts in a few tries if I need to). But also she forgets them often.
I use dashlane and I want to change. Any ideas on something that can offer the same functionality?
ie awesome with input fields for autocomplete, ability to save documents and with a good android app?
I also use Dashlane, but I don't see anyone else mentioning it. Why do you want to change? Is there something wrong with it?
I've never used a password manager before. I use 2FA or Passkeys on anything that supports them.
Enpass user since it was first featured on Android police. Highly recommend it. Haven't tried others though so don't really know if I should switch.
We (MSP) moved from LastPass to Keeper Security and love it. I switched my personal stuff over to it as well.