0
Do you guy's allow or think it's safe for your browser to keep track of your pass words?
I always say no when my browser asks to save them. I always think one of you savvy peeps would be able to get them.![]()
" In the name of the Spedo, the Tach and the Holy Throttle, Amen. "
i'm in the IT industry and save 'em. if someone/virus can get on ur computer and go trolling for passwords, they can probably find all sorts of other info as well...
It depends on the passwords you're saving, the exposure if they're compromised, and the physical security of your computer.
If they're just forum passwords, have a blast
If they're bank passwords, no fuckin' way
Anyone who has physical access to your computer can extract those passwords easily.
I'll tell you the same thing I told my grandfather after he pissed on the sofa for the 3rd time in as many weeks: Depends!
Support the Troops! (Except for Mondo, that guy's a dick)
-----------------------------------------------------
I don't store any bank info on the computer. to skeert of smart people. I use Adware and Avast and when I run scans, things are found. Mostly tracking cookies and stuff but, that alone makes me to nervous to use online banking and what not.
I cringe when my wife buys stuff online.
" In the name of the Spedo, the Tach and the Holy Throttle, Amen. "
Wirelessly posted (Tilt: HTC-ST7377/1.59.502.3 (67150) Opera/9.50 (Windows NT 5.1; U; en) UP.Link/6.3.1.20.0)
i store all my passwords with firefox, i also use a master password to protect my password bank. the way i see it is im much more likely to run across a keylogger then some form of software thats going to troll through my encrypted files and manage to to not only troll through my files but somehow export the data off my computer. so you can keylogg me all you want your gonna get a unique master password and nothing else.
I don't save passwords anywheres, mostly to force myself to remember the umpteen million I have to keep track of. If you're going to store passwords on your machine, keep them in an encrypted password safe. That way the file is of no use to anyone if they get it.
As everyone has stated. For forums sure, torrent sites yes, but for important stuff (school, banks, email accounts) no. One driving force behind my decision is if your computer gets imaged forensically then those passwords are easily retreived and can be used when trying to break other passwords.
MEH, it is what it is though.
2008 Kawasaki ZX6R Ebony Edition
Miles my first (this) season: 5800
KAWASAKI RULES WOOOOO!
i got a question,
how do you extract those passwords after you said 'yes' in the browser? manually or with what software? where/what file is it store in? reason is if you know what/where/how, you would be more careful and be safer... could help a lot of people out.
Last edited by Kham; 01-19-10 at 03:34 PM.
"fuckit!"
I keep mine in a excel protected file that I keep on a USB in my personal fireproof safe. Except for passwords for forums and such.
Thanks guys, I guess it's a good thing I'm paranoid. Just like I figured, half the stuff you folks are talking about, I've never heard of.
Keyloggers
Forensic imaging
encrypted key word safe's
See, sometimes it's nice to know evil people.
![]()
" In the name of the Spedo, the Tach and the Holy Throttle, Amen. "
Pretty easy to find instructions for whatever browser you're using, for example:
Firefox
Thing is, that'll keep the average Joe from not being able to access your passwords (or browsing history, if you clear that from your browser). The browser won't display the information that you cleared, but it's not deleted. It's still on your hard drive and can be recovered by an easy forensic investigation.
(geek info ahead...)
Clearing this stuff out of your browser is the same as when you put a file in the trash/recycling bin on your computer and empty it: the information is still there it's just a little harder to find.
Imagine you went to the library to find Riding in the Zone but someone tried to "delete" the book's existence. For some reason you had to use a card catalog to find the book 'cuz their computers are down, but someone's defaced the card so it says "iding in the Zone" and the card is definitely not in the "R" drawer. Thing is the book is still on the shelf, you just can't find it unless you're really, really determined to find it.
![]()
Doesn't that action allow the info to be overwritten eventually?
" In the name of the Spedo, the Tach and the Holy Throttle, Amen. "
I also leave my passwords on my bank accounts. What are you gonna do with them? Make deposits?
Any warrant i'm involved in will take your:
Computer
Flash Drives
Flash Cards
Cameras
Externals
Trace network cables
Most of your cables
CD/DVD's
And probably your cell phone as well..
But an average warrant... While they are getting better. Computers dont make the cut most of the time.
2008 Kawasaki ZX6R Ebony Edition
Miles my first (this) season: 5800
KAWASAKI RULES WOOOOO!
I'm not a very important person nor do I have a lot of money so I let my passwords be saved.
Friends don't let friends wave to Can Ams
You are now making me paranoid with a statement like that. I guess I better start putting a password on my cellphone & encrypt all of my flash drives & cards. I thought a computer was only taken in a warrant if you committed a computer crime or had child pornography on it.
Maybe I should keep my 8# wood splitting maul handy, a couple of swings & nobody will retrieve anything off of my computer hard drives. ;-)
I keep them saved on my desktop and use the same simple password for anything that really has no personal information. Sites like eBay/PayPal/Bank that track card info and addresses I just use a tougher password to crack and never store login information or save sessions on my laptop.
Here's a good method for creating easy to remember passwords that are hard to guess.