Don't reuse passwords
Posted Jun 7, 2012 11:34 UTC (Thu) by dskoll
In reply to: 8 million leaked passwords connected to LinkedIn, dating website (ars technica)
Parent article: 8 million leaked passwords connected to LinkedIn, dating website (ars technica)
Absolutely, one should never use the same password for two different sites.
I go in assuming that web sites are ripe for compromise (present company excepted, of course!) so to contain the damage, I use long (16 character or more) randomly-generated passwords. I only use shorter ones for the occasional broken web site that won't take such a long password.
And like others, I use a password keeper to store my passwords. I only need to remember the master passphrase.
True, a hacker who has access to my computer could steal my passwords. But my one little desktop computer presents a much smaller vulnerability surface than a bunch of high-profile web sites, so I think the tradeoff is worth it.
to post comments)