Are Password Managers Safe? Plus Talk on Password Bad Habits

Подписаться 465 тыс.

Просмотров 16 тыс.

50% 1

If you have bad password habits then the result will be a hack. You need good password management habits. We will discuss if you can use Password Managers to keep these good habits and if these solutions introduce more risks themselves.
-----------------------------------
BraX2 Privacy Phone is now available on brax.me. Sign in to the platform to see the store.
-----------------------------------
Merch Store
my-store-c37a50.creator-sprin...
-----------------------------------
I'm the Internet Privacy Guy. I'm a public interest technologist. I'm here to educate. You are losing your Internet privacy and Internet security every day if you don't fight for it. Your data is collected with endless permanent data mining. Learn about a TOR router, a VPN , antivirus, spyware, firewalls, IP address, wifi triangulation, data privacy regulation, backups and tech tools, and evading mass surveillance from NSA, CIA, FBI. Learn how to be anonymous on the Internet so you are not profiled. Learn to speak freely with pseudo anonymity. Learn more about the dangers of the inernet and the dangers of social media, dangers of email.
I like alternative communication technology like Amateur Radio and data communications using Analog. I'm a licensed HAM operator.
Support this channel on Patreon! www.patreon.com/user?u=17858353
Contact Rob on the Brax.Me App (@robbraxman) for encrypted conversations (open source platform)
brax.me/home/rob Store for BytzVPN, BraxRouter, De-googled Privacy AOSP Phones, Linux phones, and merchandise
bytzvpn.com Premium VPN with Pi-Hole, Cloud-Based TOR Routing
whatthezuck.net Cybersecurity Reference
brax.me Privacy Focused Social Media - Open Source
Please follow me on
Odysee
odysee.com/$/invite/@RobBraxm...
Rumble
rumble.com/c/robbraxman

Наука

Опубликовано:

20 июл 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 124

@iteerrex8166 Год назад

The luxury of “Convenience” is being used to taken advantage of people everywhere. It takes exercising some self discipline to counteract it.

@itwsntme Год назад

Great video as usual. Yes there are keepass apps in the app store. I use one. A few additional steps I take, some kind of inconvenient, but I'm used to them 1) My keepass db is never online. At least not willingly. Never in dropbox, never emailed, etc. Some automatic backup system may have copied it at some point (iCloud backup for instance, even though I keep that one local too) 2) My db is not even in my computer. Its on a usb drive I plug in when I want to use it. It is backed up several times though. This is actually based on advice from Rob in another video. 3) Not only I use different passwords on each site, but different emails. I just create a new one for each, which means I need to keep two passwords per site. One for the site and one for the email Not a big deal, all is in the db. I used to use protonmail for this, but they have cracked down on this kind of behaviour. 4) Whenever I need to dispose of an old drive where the db used to be, I change all my important passwords. Easy when keepass generates them for me. 5) My master password lives only in my head. It was written to a piece of paper once that my wife has, should the need ever arise. My only reservation about keepass is that it uses the clipboard to transfer the credentials. Although in MacOS you can have it send the creds directly to the browser. I did read a while back about some rogue mobile apps that would constantly monitor the clipboard, hoping to capture some of this. A very easy thing to slip into an app. Just be careful what you install in your phone.

@jeffharmed1616 Год назад

Useful thanks. AI might be a major threat to password managers now that AI is now sitting in every phone monitoring key presses

@Sb129 Год назад

I use a text file generally but I do also use a completely offline password manager on a Palm PDA, backed up to an SD card and that SD card encrypted.

@ConstitutionalRepublicStands Год назад

you're opening is hilarious, and I truly appreciate the humor and influence for this content. :)

@SonofChurchill 11 месяцев назад

Always keep a backup of passwords as haD some managers go wrong or get locked out! Thanks for video

@jezzamobile Год назад

Excellent video again! Very helpful 👍 Thanks Rob.

@TheJackiMonster Год назад

Isn't one obvious attack vector of offline password managers that an attacker would install a key logger or some software pretending to be the master password input dialog to just steal the master password? I mean the big difference between using many different passwords manually instead of automatically via a password manager is that you would loose all your passwords immediately instead of loosing them over time by key logging. So there's a lower chance to notice the attack before maximal damage is already done. I personally do not like relying on software security to store my passwords to be honest. The inconvenience to use my passwords across devices, especially when I'm not on my own device, is also a huge downside. Anyway it's a great video about the topic! Really informative!

@churblefurbles Год назад

Well if you are owned at the os level its just over regardless.

@devincurrie4145 Год назад

Nice summarization. Thanks Rob.

@braxtonperry1981 Год назад

You are like a Farmer Outstanding In Your Field 😎

@bruceli9094 Год назад

farmer with a shotgun.

@darcy6698 11 месяцев назад

one of the best youtubers in this field

@janburn007 Год назад

Thanks very much for all that information about password managers. I've been considering for a while now whether I should use a password manager. To date I've been relying on my memory , with what are for me, easy to remember passwords, usually 8 to 15 characters in length. Fortunately I don't have that many passwords to remember, & it hasn't been a problem for me to date.

@janburn007 Год назад

@Sergi Tsanz So what is the benefit to me of using a password manager, if I don't presently have any problem remembering my passwords for a few different web sites that I regularly use?

@unmapped89361 8 месяцев назад

@@janburn007Do you have a unique password for every account? (BTW: I think around 14 characters should be the minimum length nowadays)

@janburn007 8 месяцев назад

@@unmapped89361 Yes, I do have a different password for each account. The passwords are similar in part, though have something which makes each one unique. Some of the older passwords are still 8 or 9 characters - though the more recent passwords are at least 15 characters.

@tairikuokami Год назад

As long as you disable automatic autofill, PM are pretty safe, still I would not store core passwords there, since they can be used for password recovery and MFA. P.S.: Keepass used to allow a keyfile, you were not be able to open the database, if you did not have it. Not sure, if it still the case. It provided an ultimate 2FA protection.

@ConstitutionalRepublicStands Год назад

it did in back in 2011, so I would hope so, and if it did not NOW, I'd worry about who owns the company. Having to Owner-Check sites and apps is MOST annoying! Zuck you, globalists!

@ArtOfHealth Год назад

Some banks and businesses are limiting us to 8 and 15 characters. I think this is nuts.

@thegrayman3665 Год назад

fucking bankers and their fucking systems

@ZI_PY Год назад

sessions may got hijacked on the lastpass breach, too. while the usernames and passwords are encrypted, some of the urls were not.

@brianb.7435 9 месяцев назад

Question. If you don’t use browser extension to fill password info into the site how do you copy it over? 1) copy and paste, not good 2) view then memorize and type in? Thank you :)

@christopherguy1217 Год назад

What about hardware password managers such as Mooltipass? They seem to be more secure in exchange for carrying a device in your pocket.

@paulr8798 Год назад

Hi and thank you for you analysis. What about to use veracrypt?

@timjph Год назад

Actually, with 1password at least in its current form (v7) it is possible to securely distribute the password file between devices without it being stored on any cloud service. 1password does offer online accounts, but also an alternative to temporarily run a WLAN server on the macos version that iOS devices can sync to. I have kept with 1password because it offers this option as I too feel uncomfortable about having a copy of my passwords file in the cloud. Note WLAN doesn’t support sync between multiple macos devices though, so its not a total solution, but it does support other sync options which can address this.

@scotttovey Год назад

Apparently, the only video of yours that chatGPT has watched was the one in which you mentioned using a password manager. Well, now we know that chatGPT doesn't binge watch videos on RU-vid. LOL

@zoenagy9458 Год назад

bitwarden is the standard answer to PC+mobile

@invisableobserver Год назад

Rob, can you do a video on how safe privacy credit cards are? Is there a way to buy a brax phone & cell service without revealing my identity?

@ConstitutionalRepublicStands Год назад

pay with cash, to get a visa or mastercard cash card, or have someone remote that you trust do the same for you if you want to obfuscate your city or state as well, and/or not appear on camera where you purchase such things

@user-kk6qp3sb7y Год назад

I wonder what do you thinks about Passkey. Could it become a password management standard?

@robbraxmantech Год назад

It will be a video.

@BarrettBooth Год назад

How do you increase to AES-512?

@rufus7704 Год назад

I'd make well sure any password manager gets no usage data access and no special access. And no WiFi control especially Bluetooth scanning use. And yup, clear its cache frequently

@Narendra--Modi Год назад

I love Keepass.

@svenlima Год назад

You don't have extensions. What about bookmarks? Can't they be tracked, too? Or is there something like a "keepass" for bookmarks?

@robbraxmantech Год назад

Bookmarks are just fine. Just extensions

@pantarei. Месяц назад

@@robbraxmantech so what is better - (1) keeping cookies stored by my plain browser or (2) use just that one password manager extensions and clearing all the cookies automatically wen I close the browser?

@sebastiangonzales46 Год назад

Also using syncthing to sync my keepass on different devices

@robbraxmantech Год назад

Yes thank you. Great idea

@errorcode1133 Год назад

KeepassXC has this BIG issue that it is either completely unlocked and then anyone can say export your passwords in open, or alternatively it is locked and you need to enter master password to retrieve each individual password. Even worse, developers do not understand this at all as an issue.

@XxDarkXxXSasuxX 9 месяцев назад

??? That's how it is supposed to work. You don't use KeePass for convenience, you use it for a more secure level of password keeping than online variants. It's basically the same as using an encrypted file, just slightly more convenient.

@shinobiighost6946 Год назад

I just use the password reset option when I get locked out of my account.

@willburr5929 Год назад

I write mine on paper in a code that has no pattern and meaning only to me.

@TON-vz3pe 5 месяцев назад

I do the same. We are beyond PMs

@cheryls3224 Год назад

My password manager is a little black book & a pen.

@StarsManny Год назад

The best way to remember your password is to write it on a post-it note and stick it on your monitor.

@NorthernChimp Год назад

The easiest yes, but definitely not the best unless you are a hermit on an asteroid.

@StarsManny Год назад

@@NorthernChimp it was a joke

@deersakamoto2167 Год назад

I simply use a text file that gets password-protected & backed up to a USB thumb drive - no cloud, no additional software installs, no BS

@BurgerKingHarkinian Год назад

Sounds like KeePass to me

@broLuther Год назад

I just dont save passwords which have access to my finances.😅

@MerkDolf Год назад

Interesting 😅 👌 👍

@bruceli9094 Год назад

15 char length pass is no longer sufficient. Need at 30.

@XX-dq3kx Год назад

In theory! It's not easy unless you dedicate a botnet.

@rodfer5406 Год назад

Baries with use case; if not impt, then online okay

@iteerrex8166 Год назад

I heard that it made up a scientific research paper on the fly, and then quoted from it. When it was confronted by its lie, it said: oh sorry.

@coziii.1829 Год назад

God Bless

@dizzywow Год назад

"You will be zucked!" LOL

@josephg.3370 Год назад

👍

@landotter Год назад

Local man explains online privacy.

@ConstitutionalRepublicStands Год назад

Are you trying to dox him, or yourself, or both?

@docAllen Год назад

i will never spend more then 50 bucks on a phone. so i am not worried about the mobile issue.

@worldhello1234 Год назад

AFAIK, they are save if they use encryption and your master password isn't 12345. 😉

@docAllen Год назад

UPDATED: janburn007 gave me the answer. he has a sea boat. it's not a rv motorhome. I always wondered, Are you filming in a RV motorhome? because that's what it looks like.

@janburn007 Год назад

Rob Braxman has mentioned in some previous videos, that he is filming on his boat.

@docAllen Год назад

@@janburn007 ok thank you. i feel bad because i know he has a channel for his sea boat thing. but i never really looked into it.

@janburn007 Год назад

@@docAllen He has previously indicated that he has a home in Los Angeles, but because he is also into sailing, he has a boat, & often uses that to film videos.

@ArtOfHealth Год назад

It is a lovely yacht. He shows what it is like to do certain tasks. Some videos he has his friends helping out. Very cool guy. His jazz group is cool too. He feels his music.😎

@aaron6841 Год назад

When you say safe the real question is safer then what?

@urbanws1234 Год назад

Anything that can be done about the $50 a Year for an email account. Seems a bit Steep. How about Deals for cheaper prices for more than one year if paid upfront.

@massapower Год назад

I still use my Trusty BlackBerry Password Manager 😁👍🏻😎👊

@ryanhelmer9369 Год назад

Yo, I hated Chat GTP for misdescribing old books, including making up stories about people who reviewed those ancient works. Repulsive to watch the machine rewrite history as a simpler idea.