It’s a digital jungle “in here.”
Those good-old lax internet days are over. Attacks are increasing regularly, with online bots constantly scanning any potential openings and exploiting any outdated vulnerable code.
It is critical that we all secure our systems, logins, and sensitive data. This is a challenge, as the volume of our information grows along with our expanding electronic activities.
We also need to keep everything updated and backed up as much as possible. Running open source software is ideal.
Services such as Lastpass are a convenient, yet questionable solution. This specific “single point of failure” is a risk, being a centralized, closed source, commercial, and highly visible target.
Using a personal, local, open source login and password database is highly recommended.
My choice is KeePassXC.
KeePassXC runs on multiple platforms and mobile variants are available. It is open source, being actively developed, and can manage automated login-form entries via the most popular browsers, which is a key feature for anyone dealing with dozens of logins every day.
Rather than creating your own passwords, the best strategy is to have a program such as KeePassXC generate and store them. Using long passwords containing multiple symbols and character cases is essential to avoid “brute force” guessing attacks. It’s best to use a different password for every login:
“Password reuse and simple, easy-to-guess passwords are the biggest problems when using online services. If one service gets compromised (either by guessing your password or by exploiting a security vulnerability in the service’s infrastructure), an attacker may gain access to all of your other accounts. But using different passwords for all websites is difficult without a way of storing them somewhere safe. Especially with arbitrary password rules for various services, it becomes increasingly hard to use both strong and diverse passwords. KeePassXC stores your passwords for you in an encrypted database file, so you only need to remember one master password.”
If you need to migrate many logins from Lastpass to KeePassXC, there are rapid methods of exporting and importing your database.
Am currently researching open source options for automating changing multiple passwords, something which was introduced by Dashlane and Lastpass. This sort of functionality would certainly be incredible, so please let me know if you know of any related tools.
Contact me for assistance with security!