Re: Laptop/PC security setup
Posted: Fri Apr 20, 2018 11:26 pm
I put a padlock on my laptop so you can't open it. Haven't had any viruses yet
satriales wrote:OrangeRakoon wrote:Adblock plus and noscript in browser, then you're already halfway there.
I think Ublock Origin is usually recommended instead of AdBlock Plus these days. AdBlock used to whitelist ads if the advertiser paid them money, but not sure if that still goes on.
Meep wrote:Another reason I was considering Bitwarden is that is open source, which means I am naturally more inclined to trust the software rather than the proprietary methods used by Dashlane and LastPass. I know that's a bit paranoid but anyone who reads the news these days can't help but be paranoid where data is concerned.
I mean, obviously they can't sell on passwords and it would be dumb to think they would but the data about what sites I use and what accounts I hold would be pretty valuable.
OrangeRakoon wrote:Passwords are perfectly fine if you use them right, I don't even think password managers are necessary. They're just useful if people don't want to put in the effort otherwise.
Meep wrote:The only alternative is either use the same password over and over, bad idea, or write your passwords down on somewhere that is not protected, really bad idea.
OrangeRakoon wrote:That entirely depends on how strong your passwords are. As long as they are strong and unique then you won't have a problem.
Meep wrote:I suspect we will see a lot more biometric authentication in future but it will be in addition to passwords and other memorable data. It will not replace them simply because it is not nearly secure enough to protect data on its own.
OrangeRakoon wrote:100% passwords are better than biometrics as an authentication method for those reasons - biometrics are not hidden and cannot be changed. Biometrics are good in combination with a password as a proof of identity. You should always combine something you are with something you know if you want to be secure.
Plus I'd rather not make my fingers a valuable target for criminals to cut off.
Green Gecko wrote:It's relatively easy to combine a cipher with long, memorable and unique phrases to create a password that is both strong and memorable.
Obviously password managers are easier. The trouble they are putting all your eggs in one basket. If that memory is read or someone does something as simple as watch or record you, they have access to everything if they can also obtain the database (that part should actually be more difficult).
2 factor is very good.
Earfolds wrote:OrangeRakoon wrote:100% passwords are better than biometrics as an authentication method for those reasons - biometrics are not hidden and cannot be changed. Biometrics are good in combination with a password as a proof of identity. You should always combine something you are with something you know if you want to be secure.
Plus I'd rather not make my fingers a valuable target for criminals to cut off.
I mean, you're wrong, on multiple counts actually, but it's nice that you believe this so passionately.
2FA is correct, though; you should always use this, and the ideal would be two or more factors where none is a password.
Once again, I recommend reading the WebAuthn spec, or at least one of the blog posts about it.
OrangeRakoon wrote:In what ways am I wrong? Are biometrics changeable? Are they hidden? "You're wrong" isn't much of a convincing argument.
100% passwords are better than biometrics as an authentication method
biometrics are not hidden and cannot be changed.
Biometrics are good in combination with a password as a proof of identity. You should always combine something you are with something you know if you want to be secure.
Plus I'd rather not make my fingers a valuable target for criminals to cut off.
Also, what is your concern with passwords when they are long and complex?
Earfolds wrote:biometrics are not hidden and cannot be changed.
It's true that biometrics cannot be changed. In fact, they're an intrinsic part of your identity. Which makes them a great tool to authenticate your identity.
Earfolds wrote:Biometrics are good in combination with a password as a proof of identity. You should always combine something you are with something you know if you want to be secure.
This is actually almost good advice, but you slipped up on the wording at the end. This comes from the general advice behind 2FA, but it's actually "combine something you know with something you have and something you are". I admit this point is more nitpicky than the others.
Earfolds wrote:Plus I'd rather not make my fingers a valuable target for criminals to cut off.
Criminals will have a much tougher time cutting off your valuable fingers than they would just mining your password on their GPU or something.
Earfolds wrote:And, the most important point of all:Also, what is your concern with passwords when they are long and complex?
If you can remember your password, it's too weak.
If you genuinely have unique, unrelated, and human-made passwords of at least 16 characters for every website you visit, and you can remember them all, you are either lying to me, or don't visit many websites.
If you're advocating for the continued use of passwords, you either don't know anything about data security, or you have an ulterior motive.
OrangeRakoon wrote:Being able to change your credentials in the event that they become compromised should be an obvious requirement for any good method of authentication.
OrangeRakoon wrote:I don't disagree with you - my point was that I would never want to use biometric data as the sole method of authentication. I wouldn't say I slipped up!
OrangeRakoon wrote:The argument here is more that if I am targeted specifically, I'd much rather just tell the scary bad people my password and lose all my money than tell the scary bad people my password, lose all my money and lose a finger.
OrangeRakoon wrote:Are passwords unfit for purpose? No, provided you use them right.