It seems to me (hence this question), that storing all your passwords online and accessing them with a single “unlock” password would be extremely dangerous. If the locker service is itself hacked, then the hackers will have ALL your passwords for the price of getting one password.
In: Technology
What’s the alternative?
If you use the same password across multiple websites, then if *any* of those websites are hacked then your password could be compromised. Your password is only as strong as the weakest security amongst all the websites you use it on.
So you need to make sure you use a unique password for every site, how do you keep track of that?
Of course, keeping your password list entirely offline would be the most secure thing you can do, but at a certain point most people are willing to sacrifice some security for convenience.
Good password storage services try to mitigate the risk as much as possible.
– They should encrypt your password list with a master password that only you know
– They should let you use 2 factor auth to mitigate someone stealing your master password
– They should notify their customers immediately if there are any security breaches
Ultimately it comes down to who you can trust more: the password storage service or the weakest of all the sites that you use to store your single common password.
Latest Answers