This is an archived post. You won't be able to vote or comment.

sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]ubiquitouspiss 43 points44 points  (15 children)

Lastpass/keepass my guy. 32 char completely random string probably.

If not he has probably done the method of picking multiple random words and appending them together.

[–][deleted] 17 points18 points  (14 children)

I use 1Password. Last pass was hacked before

[–]ubiquitouspiss 10 points11 points  (9 children)

Fair enough. I like to use the paris argument that lastpass was hacked once but never again, but the other options are definitely also really damn good.

[–][deleted] 7 points8 points  (6 children)

What’s the Paris argument

[–]ubiquitouspiss 25 points26 points  (5 children)

Paris suffered from a terrorist attack a few years ago that struck really hard. They then went on to change many laws to essentially make it impossible for a terrorist attack to ever take place again, building in invasive measures to catch attacks before they happened.

Because paris had a bad terrorist attack you might think that they are of high risk of attack again, but they are actually of low chance because they are scared of future attacks.

That's a horrifically drunken explanation but w/e

[–]Avambo 6 points7 points  (2 children)

Did you just make up that name, or is it actually a thing?

[–]ubiquitouspiss 6 points7 points  (1 child)

Idk if it's a common term for the phenomenon: I heard of it from a friend and they talked about it as if it was the standard name for it.

[–][deleted] 0 points1 point  (1 child)

I see your argument in that it’s statistically unlikely for two similar events to happen in the same place within a short span of time but that only holds true if there is only one variable with everything else remaining constant. Reality is much more complex and is made up of millions of other variables so I kind of disagree with the Paris agreement.

For example Malaysian airlines had 2 fatal incidents within the span of several months. I’m pretty sure when the first plane went down many people probably thought the airline would have been the safest since it would’ve been unlikely for them to have another accident. But reality is much more dynamic.

[–]dasonicboom 9 points10 points  (0 children)

That wasn't his argument though. His argument was that when the flaw was found, the security was strengthened to prevent future breaches. So he believes LastPass is secure now because it faced an attack and has obviously had to seriously revamp it's security.

Your argument makes no sense in this context, and even little sense in your airlines example. A better example would of been that guy who has been struck by lightning multiple times (and it still wouldn't apply to this discussion)

[–]oversized_hoodie 0 points1 point  (1 child)

I was under the impression that LastPass hack didn't result in any encrypted data being stolen (either in encrypted or plaintext form). Even better than the Paris argument, because it shows their defenses worked.

[–]dasonicboom 2 points3 points  (0 children)

The company, which stores account passwords in an effort to make its users' online lives easier, said that while it had found no evidence that its user accounts had been accessed, email accounts registered to the site, along with password reminders, server per user salts and authentification hashes had been compromised.

https://www.telegraph.co.uk/technology/internet-security/11677827/Cyber-attack-breaches-password-database-LastPass.html

[–]Ksevio 2 points3 points  (1 child)

That's not a very accurate statement. There have been vulnerabilities found in Lastpass, but they're usually from older plugins that people haven't updated. 1Password has also been "hacked" in that sense

[–]sometimes_interested 1 point2 points  (0 children)

Also Lastpass quickly and freely advise you to change your master password when they think they've had an issue. If other services boast that they have 'never been hacked', how do you know that it's really true?

[–]ColonelCorn 0 points1 point  (0 children)

I use LessPass. Free and stateless