New
#31
I keep my passwords in and on a manila folder.
Multifactor Authentication and Security is handled by Smith & Wesson.
I keep my passwords in and on a manila folder.
Multifactor Authentication and Security is handled by Smith & Wesson.
Texan and their guns!
Even famous at this part of the world.
I didn't mention the "G" word. It's against forum policy but Texas is not unique in that regard. :)
We are unique in that we have our own water, gas, oil, electric, food and fuel so it matters not.
You missed a good series on the History Channel the last few weeks. It was about how the "country" of Texas was formed and the beginning of the Texas Rangers (law enforcement, not the baseball club).
An official was once asked why he sent only one Ranger to handle a riot. He replied; "It was only one riot".
Using iterations in general only means it will be more time consuming to generate the hashes. Both for users and hackers. It doesn't mean it's impossible to crack.
Sure, you can't revert a hash to its source but there are other ways. The hackers will redo all steps needed to create the hash(including iterations, any salt etc). Then they do this for all possible password combinations and run it millions or billions of times on multiple and powerful CPU/GPUs. When they finally end up with a generated hash that matches the hacked hash, they know what the password is. Simplified example:
Hacked hash: sldjkfh345se
Re-generated hash for password "Test": fjeiojri334jikk
Re-generated hash for password "Test1": ejeiud837fgk
Re-generated hash for password "Test2": sldjkfh345se
Match found! Password is "Test2"
The salt isn't overkill as it makes any successful crack attempts useless on all other hacked accounts and they need to start the process over for every account. Or maybe even give up...
My advice is to use a master password that's at least 20 characters long. That's too much to generate hashes for.
Keepas is the way to go! I use it to manage my client accounts and even personal accounts. just be careful not to forget the master password otherwise everything is gone.