Enforcing password strength
Posted Oct 13, 2011 5:08 UTC (Thu) by dv1m (guest, #58319)
Posted Oct 13, 2011 13:34 UTC (Thu) by tsr2 (subscriber, #4293)
There's a quick intro to KeepassX at http://linuxgazette.net/174/youngman.html
Posted Oct 13, 2011 16:30 UTC (Thu) by JohnMorris (subscriber, #73531)
Posted Oct 13, 2011 16:36 UTC (Thu) by jldugger (subscriber, #57576)
Posted Oct 13, 2011 16:48 UTC (Thu) by Baylink (guest, #755)
I suspect there are a fair number of people out there who haven't given much thought to *just how strong a basket* you want for your password safe...
KeePass, LastPass and two-factor authentication
Posted Oct 14, 2011 7:07 UTC (Fri) by Cato (subscriber, #7643)
When combined with something like Dropbox, it's quite easy to keep your password DB available on various devices, although you multiply the risk of a keylogger grabbing the KeePass password. (Dropbox has a pretty good Linux client that includes a CLI-only install for headless servers (just use lynx on the server), and is very quick at syncing small files.
I also use LastPass for less critical passwords, and by generating a strong random password for every site, the main risk is that the main password is stolen. LastPass supports Yubikey, a low-cost USB token with AES encryption, which emulates a keyboard - so a keylogger attack would have to steal the LastPass password and my token. There's still a risk of LastPass-specific targetted malware, so client systems need to be kept updated and secure. Free as in beer on Linux, Windows, Mac, etc, with paid-for apps on iPhone and Android.
Duo Security is an interesting option to secure your own systems' SSH, web apps, VPNs, etc - they use phone calls, SMS or push notifications to smartphones as a second factor, and can be integrated with PAM. Free for up to 5 users or open source projects.
Posted Oct 17, 2011 13:17 UTC (Mon) by sorpigal (subscriber, #36106)
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds