Accessible and secure - can they be friends?
September 23, 2010 3:53 AM Subscribe
Help me design a secure method of keeping my passwords both safe and available.
I, like everyone, have been forced to create a variety of logins and passwords for the websites I visit. So far I have a system of a weak password for less-important logins (facebook, MeFi) and a strong one for important ones (banking, RDP to home computer). I also have a few stock usernames. That way, I just remember my logins and don't have to write them down / store them anywhere.
But inevitably there are websites that don't accept my regular logins. Some have username and password requirements that don't fit my current passwords. Some even require shorter passwords than I use - which drives me nuts.
My current system for keeping track of these variations sucks - I store them in a place online that's more obscure than secure. Sure, I have to log in and then dig up the place where they're stored, but then they're passed to me over an unencrypted http connection.
What I'd like is a place online where I can securely store these random logins and access them over a secured connection after using a very strong master password to get in. Does anyone know of such a place? I'd rather not store them on my home computer because I don't trust myself to keep it properly secured (especially since I've got a non-standard RPD port open). And I'd like to make these accessible online because I travel frequently and would like to pull them up from anywhere. Given those considerations, what would you do?
Also, any additional considerations that come to mind are welcome (e.g., whether I'm setting myself up for problems by reusing passwords, alternatives to what I've described, "what you're asking for is a terrible idea," etc).