LastPass – and Password Card
Posted by ScottFor quite a while I’ve used 1Password on my Mac to keep the 10,000 passwords I have to manage across all my accounts. This week I came across two tools that I’m very impressed with. The one problem with 1Password is that it doesn’t support google chrome (yet). And there’s no PC or Linux equivalent.
Well, Last Password (http://lastpass.com) is an amazing application that supports EVERY SINGLE browser I use. It stores all the information with one master password and early on I’ve been very impressed with it’s integration and utility.
The other nifty little tool I found via lifehacker.com. It’s a site called Password Card. (http://passwordcard.org). A Password card is quite clever. It’s basically a simple index card you carry in your wallet that allows you to create strong passwords and not have to remember them. How does that work?
Simple, you remember an index into the card, like square blue, or diamond green. Right now I’m playing with a triplet to recall like square white h9 or solidcircle purple v8. What does all that mean? You go to the solid circle symbol, then scan down to the purple row, and start reading off 8 characters vertically.
The reason for the 3rd option is that not all sites agree what makes a “strong” password. Some love the 8 random characters, symboles and digits, others need to see 9 before they thing a password is strong.
The genious of this system is that all you have to remember are simple things like a symbol name and a color, but the password itself is really difficult. You print the card, laminate it, and stick it in your wallet. Even if someone gets your wallet they won’t know what indexes to use to get your passwords. I’ve been using it for a few days, and so far I’ve been slowly upgrading all my passwords to “strong” passwords. It seems to work pretty well, especially with a tool like lastpass to help.
—
Update: It’s harder than I thought it would be to remember things like color, symbol, direction count for each website. And as good as last pass is, it can’t cover every situation. Like desktop apps that need to login. For example evernote, or iCal, or Mail. Keeping track of the symbol / colors is trickier than I thought.