Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Compare cell phone plans using Wirefly's innovative plan comparison tool ×

Comment Re:The console advantage. (Score 1) 86

That's no where near where this is going. You're right in that you just buy "Playstation" rather than a Playstation XYZ. But your new console will play all your older games and all newer games going forward for X number of years without needing a subscription. Sure if 2023 a game might come out that requires a 2017 or newer version of the hardware, but how if that different than the normal generational increases?

I find this much more attractive than the PS3/360 -> PS4/XBone shift. On the Microsoft side there is some backwards compatibility, but on Sony's side unless you keep a PS3 around, your digital collection and older games are no longer usable. On my PC I can fire up a 30 year old game and still play it on a system that will play all the latest games.

Comment Re:Let the computer handle it (Score 1) 211

That's fine if you are accessing the sites only from a single computer. Otherwise that database has to be uploaded somewhere else you'll need to reset your password when you try logging in from another machine.

Windows does have a built-in credentials manager that pretty much no one uses. OSX has a keychains password vault.

Comment Re:Why not a password hasher? (Score 1) 134

Again I see your point. But I've used this system for close to a decade now and I'm only using two master passwords so far. How many passwords have you memorised in the last ten years?

Less than a half dozen. One for the password vault, encrypted phone unlock, PC login, work login and one or two others I'm forgetting. The rest are all just random unique passwords per site.

One issue I see with your hash is using it for sites that have piss poor password policies such as your password can't be over X characters long, or it has to contain letter, number, and limited list of symbols, etc. Your hash could possibly not match the requirements. What do you do in this case?

Comment Re:Why not a password hasher? (Score 3, Interesting) 134

Say there is a security breach and you are forced to update your password. With your hasher you now need to update every single site to use the new password.

With a password vault with unique passwords for every site you change the password for that single site and you're done.

Comment Re:Why not a password hasher? (Score 1) 134

The key file doesn't change, the password vault file will change as you add and change passwords.

You manually copy the key file locally to any device you want to be able to open the vault.

The vault itself is synced via a cloud service so all devices can access the latest passwords.

If someone were to get into your cloud storage they could get the vault, but not the key.

This method doesn't protect against locally exploited or physical access, but it stops online security breaches.

Comment Re:Expected (Score 3, Interesting) 134

If a site has shitty password storage and is compromised that password is leaked and their are bots that try logging into other sites using the same credentials. By having different passwords for different sites you can prevent this.

There are password vaults that keep everything local if you are worried about security.

Slashdot Top Deals

The steady state of disks is full. -- Ken Thompson

Working...