this post was submitted on 15 Nov 2025
705 points (98.8% liked)

People Twitter

8655 readers
545 users here now

People tweeting stuff. We allow tweets from anyone.

RULES:

  1. Mark NSFW content.
  2. No doxxing people.
  3. Must be a pic of the tweet or similar. No direct links to the tweet.
  4. No bullying or international politcs
  5. Be excellent to each other.
  6. Provide an archived link to the tweet (or similar) being shown if it's a major figure or a politician. Archive.is the best way.

founded 2 years ago
MODERATORS
SendMeYourTaTas@sh.itjust.works
pelespirit@sh.itjust.works
705
Best practices (media.piefed.world)
submitted 3 weeks ago by The_Picard_Maneuver@piefed.world to c/whitepeopletwitter@sh.itjust.works
57 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[–] henfredemars@lemdro.id 7 points 3 weeks ago (2 children)

Using a password management scheme of some kind does not optional. You cannot trust them with what’s effectively a master password.

[–] unmagical@lemmy.ml 6 points 3 weeks ago (1 children)

A password manager does not solve this problem.

[–] bdonvr@thelemmy.club 7 points 2 weeks ago* (last edited 2 weeks ago) (2 children)

Oh it absolutely helps. Because if you're using a password manager then every account you have should have a different password.

Most people who don't use them just use the same password or a variation thereof for everything, making a leak much more devastating.

[–] hperrin@lemmy.ca 2 points 2 weeks ago (1 children)

I hate passkeys, but I understand that without a password manager, they’re probably the best option. And for some god forsaken reason, like you said, most people just don’t use a password manager. I can’t even get my wife to use one, and I’ve shown her how easy it is.

[–] bdonvr@thelemmy.club 2 points 2 weeks ago

My password manager also holds my passkeys, so I really don't mind them.

[–] unmagical@lemmy.ml 1 points 2 weeks ago (2 children)

You using a password manager does not solve that this org stores your password in plain text and will email it to whatever's on file when ANYONE clicks the forgot password button.

[–] bdonvr@thelemmy.club 6 points 2 weeks ago

No, but it does severely limit the damage is what I'm saying.

[–] brotundspiele@sh.itjust.works 2 points 2 weeks ago

That's why I always use password hashes as my passwords. So when some hacker steals the database, with all the clear text passwords, and look at my account they think somehow this password is still hashed and don't try using it directly. My current lemmy-password is $argon2d$v=19$m=16,t=2,p=1$Mk9RTWNESzMyWVljUGo5RA$BiGKlhzFuiWA0N78KzEmCQ

[–] trxxruraxvr@lemmy.world 5 points 3 weeks ago (2 children)

Using a password manager is not optional. Schemes are to easy to figure out and/or brute force.

[–] frezik@lemmy.blahaj.zone 8 points 3 weeks ago

To wrap it all together, password managers do have inherent flaws, but it's better than all alternatives for passwords so far. The real argument is that passwords in general are a shitty authentication scheme.

[–] ArcaneSlime@lemmy.dbzer0.com 1 points 2 weeks ago* (last edited 2 weeks ago)

Figure out mine then, right now.

(I do indeed use a password manager especially for online services, but for some things [like the PM itself] you can't rely on it and need to remember a few, and a scheme helps for that. I also bet $10 you can't guess one of my schemed passwords. To be fair, the way I do it it'd still be really hard to figure out the others even if you knew the system, which I will not reveal. I'd be impressed if you even guessed the system.)

I could upgrade it though, still. New system: book cypher.