Yep

This legit made me choke on my laughter. So fucking true.

And then people go "jUsT wRitE iT dOwN"

Well, I do, bish, but I can never remember what notebook or piece of paper I wrote it on nor where I put it. I have found old password notes in the weirdest places, even digitally. In fucking Procreate on my iPad in a a weird folder I never use, quickly scribbled down in a file that I have not looked at for three years. Sometimes in the bottom of a bag that I put in the basement months ago, on a little water damaged poster it note. Other times in the back of a notebook, upside down AND written in invisible ink. No really. And I thought I was sooooo clever at the time too. -_-

So now I have a bullet journal I carry with me everywhere and I wrote down all the pin codes and passwords and whatever the fuck I have that I can remember down on a separate piece of paper that is in pocket in the back of the book so that when this journal is finished, I can put it in the next one. I hope this time it will work out longterm, lol.

Use a password manager like keepassxc

Or Bitwarden for cloudsync
- You can use keepass with cloudsync.
  Just have the password file in a cloud.
- or a notebook
Yes, but that would involve choosing a password manager, setting up the password manager, learning how to use the password manager and remembering to use the password manager.
- That's easy, have your bi yearly over fixation on privacy and suddenly you'll be setting up a custom VPN instead of doing your laundry. Fuck I forgot my bedsheets again
- That's a one-time cost for a lifetime of not dealing with remembering passwords

Do yourself a favor and go to https://bitwarden.com/

Then you can generate a password so big and complex, the site or app starts begging you to stop. At that moment, you can say "ur password system is weak."
- Careful with that. Sometimes a site will allow you to use some stupid long password when you sign up, but then it turns out that some other version of the site or an app for it on other platforms won't accept a password that long!
- In lemmy, password length is capped to 60. Weak.
Almost, but KeepassDX is better 😎
- KeePass and literally any of it's derivatives. Not just DX.
  I use Keepass2Android, KeePass XC, Keepassium, and the OG KeePass.
  They are all solId.
- Why?
Sadly they are putting 'AI' bullshit into it now: https://bitwarden.com/blog/bitwarden-mcp-server/
- Can't wait to have chatgpt post my passwords online
- Yes but it's opt in, not opt out, it's not shoved down my throat unlike most other companies.
- Arghh, why is every company thinking, that AI will make them valuable...
  "Let AI retrieve, generate and manage all your credentials"
  Yeah a definite nope, for what reason do I use bitwarden? So that exactly this doesn't happen...
  Anyway vaultwarden is what I'm using, much more performant and self-contained, compatible to bitwarden (but you need to host it, obviously)...
Or just use the built in password managers in chrome or Firefox. No need to pay for a password manager when they are free on the browsers most people already use
- No need to pay
  I didn't say anything about paying. It's free in both meanings of the word.
  It's also cross-platform and -browser and better than builtin ones.
- Browser-based password managers are terrible. I use multiple browsers regularly (Firefox, Chrome, Edge, Safari) and got sick of trying to keep them in sync with my "master" KeePass database, so I ended up exporting everything from them and dumping the exports into KeePass. Deleted everything from the browsers. It was a huge weight off my shoulders.
  I changed the password autofill on both my work phone (iPhone) and personal phone (Pixel) to their respective KeePass variants. It's much nicer.
- I wouldn't recommend that. Bitwarden is free and works on any device, and doesn't tie you to a browser. What if you want to switch browsers someday?

Password security and password manager howto should be an essential part of education. But then again if that happened, schools would probably teach how to use some proprietary cloud-based app with built-in datamining, because lobbying. It would only be a matter of time before everyone would find out the company was storing everyone's passwords in plaintext after they all leaked.

password managers save my life very hard

Password Strength xkcd

attribution: https://xkcd.com/936/
- So, are we just going to pretend dictionary attacks don’t exist?

I don't know how but I went way too long without a password manager. Changed my life. I recommend Bitwarden. I also use it to store like, my bank account number or my tax number.

Password manager

Correcthorsebatterystaple (somebody link please)

Edit: Most places wont allow it due to character requirements and length limits, but it does work and is cryptographically sound.

XKCD 936
Yep and then they require you to put special characters, numbers, and capital letters because.... Reasons?
I would be the one getting hacked, not them.... Let me do what I want.
- It's just because of entropy. More entropy is more secure.
  Also sure, it's you getting hacked, but it's the service that got hacked that will have all kinds of news stories written about their weak password requirements.
- Also, chbs without aA!%12345ing is way harder to inject code with.
  Not that anyone is allowed to code considerately and well anymore.

Let me write a fucking passphrase instead of ABCabc123! And let me use fucking ã, ñ, é, ç, etc on my passwords - Microsoft doesn't allow spaces or latin special characters

Forcing people to use upper case, lower case, number and special character is terrible for them and vastly increases password reuse. Besides, almost no one brute forces anything anymore, it's all rainbow tables and invading the database server

None of the characters in your post are special characters. It's not your fault, but I hate when tech folks call stuff like ñ a special character. That's a real character that a real language uses.

At home I have a notebook, at work I have a system, so I can deduce the password most of the times.

Keep a physical, paper password notebook, and write something boring, like "recipes" on the front of it.

Or, you know, a password manager.
https://bitwarden.com/ or plenty other free (or paid) choices
- Keeppass is pretty simple if you want to keep corporations out of your shit.

Ok but I'm not losing all my passwords if I lose just one or if my manager breaks. Safety over security smh.