dil_bert Posted June 14, 2015 Share Posted June 14, 2015 hello dear php-expertsis it a good Way to Manage the Passwords in cookies?well for some sensible accounts i have made up my mind and created some very very difficult passwdsin the past i stored some of these critical passwds in cookiesso that i did not need to retype this.BUT wait: is this a secure way to do so?`note: i run opensuse-linux but i think that this is no guarantee that all is safe.so what do you suggest:a. create a passwd that i can remember and do not need to story in the cookieb. create a very very hard passwd that i cannot remmeber at any time and store it in the coookie.love to hear from yougreetings Quote Link to comment https://forums.phpfreaks.com/topic/296806-what-are-the-best-ways-to-store-a-critical-password/ Share on other sites More sharing options...
requinix Posted June 15, 2015 Share Posted June 15, 2015 Passwords never go in cookies. Never ever. Not encrypted, not hashed, not any way whatsoever. Now what are you talking about, putting passwords in cookies? What is this for? Quote Link to comment https://forums.phpfreaks.com/topic/296806-what-are-the-best-ways-to-store-a-critical-password/#findComment-1513865 Share on other sites More sharing options...
dil_bert Posted June 15, 2015 Author Share Posted June 15, 2015 hello dear requinix youre right - the firefox stores the passwd well i will try to not Firefox for storing any part of my authentification: i will try to avoid to use it myself as even though they are stored in an encrypted format in Firefox, doing so could give someone access to my accounts if they got hold of my computer.besides fireFox. i want to learn something new: I try to store my passwords using keepassx as my password manager and log in / out as needed.we can use keeppassx in different modes: The way I want to set up keepassx requires a key file and a master password to be allowed in. I keep the key on a USB key and backed up on another one. An auto-generated keepassx (160 bit) password looks like this gJLMsn+~>1Vepl0/3!'K/hk/jolly_feedback| How do you like this: so they are very, very strong. So strong that i feel safe with it and the best thing of all: You don't have to type it, just use the copy password menu item and paste it in the appropriate field.What do you think!? Quote Link to comment https://forums.phpfreaks.com/topic/296806-what-are-the-best-ways-to-store-a-critical-password/#findComment-1513929 Share on other sites More sharing options...
Ch0cu3r Posted June 15, 2015 Share Posted June 15, 2015 You just contradicted yourself there. You don't want to use the Firefox password manager but you are going to use a thrid party password manager, which stores the passwords as almost the same format as Firefox. All someone needs is your master key and they have access to your passwords. It does not matter how secure your password is. If there is a vulnerability on the website/service you are using there is nothing you can do about. Quote Link to comment https://forums.phpfreaks.com/topic/296806-what-are-the-best-ways-to-store-a-critical-password/#findComment-1513946 Share on other sites More sharing options...
dil_bert Posted June 16, 2015 Author Share Posted June 16, 2015 hello dear chocu3r many many thanks - well i think i have learned abit. i have to see under which condidions i use the FireFox password-manager. I did not care about this so far. are there some different ways to use it!? i will make sure that i learn the things bout this thanks for your post Quote Link to comment https://forums.phpfreaks.com/topic/296806-what-are-the-best-ways-to-store-a-critical-password/#findComment-1514084 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.