Welcome to WebmasterWorld Guest from 22.214.171.124
Forum Moderators: LifeinAsia
I'm interested to know how others manage client passwords for web hosting and email. For example:
- do you keep a master list on paper
- do you keep anything to do with passwords on your local computer, even if it is encrypted?
- do you regularly rotate passwords even if they are very hard to crack
- do email passwords require the same level of security (are say 8 letter nonsense words without numbers mixed in ok?)
Any comments on the above would be of interest to me ;).
I've been keeping passwords in a plain, neutrally-marked text file (on a floppy) and print it out regularly, just in case....
As for format, I prefer a combination of upper and lower case, as well as numbers. Makes it harder to crack, as I understand it.
1. On paper? Never.
2. Yes, I encrypt them with PGP.
3. Yes, passwords can be hard to crack, PGP encryption is extremely hard to crack.
4. Email passwords require the same level of security you would apply to any sensitive information. My advice is to use PGP encryption for ALL sensitive email communication. Standard email isn't a sealed letter, it is an open postcard.