Account Password Security: Basic Edition

By Isaac Velando.

The Short Version

Sharing credentials (username and passwords) between the numerous online accounts we have is a difficult dangerous habit to break. I propose the following steps as a manageable way to fix the problem:

• Select password database software like KeePassX or LastPass and if necessary complementary mobile apps
• Track down all of the online accounts you’re aware of and scour your email account(s) for accounts you’ve forgotten; for each account:
  • If you no longer care about the account, delete with prejudice (pkill -9 $account) if possible
  • If two-factor authentication is available, set it up
  • Remove any non-critical personal information, especially from legacy accounts
  • Generate a unique random username (if you can change it) and password (with maximum length and largest dictionary) and store it in the password database
  • If a security question is required, create an entry in the password database for a random answer and make note of the site and question in the database entry
• Lock down the security of your password database; use a unique, memorable, and strong password and see the Advanced Edition (coming soon) for more details
• Enjoy the ability click a few buttons to log into your accounts!

Read the rest here...

Although the author doesn't mention it, I recommend Password Safe designed by Bruce Schneier.