With passwords proliferating like tribbles, I’ve had to upgrade from my two previous methods of managing my accounts.
The first method was the easiest: I had two passwords, an easy one and a complicated one. If the site was important I used the complicated one. If the site wasn’t important I used the easy one. Well… that started to seem like less and less of a good idea pretty much as soon as I started online banking and getting work passwords that mattered and stuff. So.
The second method worked for a long time: I had several passwords written down in a fairly secure online place that was itself password protected, and then I had an easy password that I used for all my “I wonder what del.icio.us is” experimentation online. That started seeming less and less good after several of the sites with the easy password got hacked multiple times and the hackers stole their databases of user passwords. Multiple times. And then I’d have to go through these millions of little sites changing a bunch of passwords all day. That got to be a less and less appealing way of spending a few hours. So.
Now I’m using an encrypted password manager. Here’s the setup. KeePassX (the Mac version of KeePass) on each of my computers and KyPass installed on my iPod Touch, each of these is directed to look at the KeePass database that’s stored in Dropbox (and the file made available offline on my iPod Touch).
Hopefully this solution lasts me for a while.