Comment Re:Good since OpenID failed to take over (Score 1) 280
I have three bank accounts, two PayPal accounts and a credit card account. That's six highly sensitive logins.
Then I have my local computer (remote ssh login) and a remote cloud server (remote ssh login). Also requiring decent passwords. That's eight already. Plus one generic password for slashdot and all the other forums.
So that's nine passwords to remember. Well, I may be able to manage that.
Now the second part: remember which password belongs to which service, without making your passwords something like (still have to remember the first part separately), which in turn would compromise your password's security.
For added difficulty: I don't use all the above accounts actively. It is quite OK to remember a rather complex password you use on a daily basis, it gets harder if you check your bank maybe once a week, let alone that dormant account that is accessed maybe once or twice a year.
That just doesn't work. As a result, the banks that don't allow me to use my password manager have a relative weak password, something that at least I can remember easily and link to the correct account, for actual security relying on the second factor in the authentication chain there. The alternative would be the good old post-it note, or having them written down (or stored in a plain text file) somewhere.
People are not computers. Memories falter and fail, and are inaccurate. We'll have to live with that.