A
Andy Fish
Hi,
I just got a nice email from fasthosts - a UK ISP - saying that they have
had a security breach and have lost security details including my password
IN PLAIN TEXT !!
because I use the same password for different online systems, this means
someone who found out my email address (the real one - not the one I'm using
to post this) and fasthosts password could potentially log on as me to many
different sites.
fortunately I use several different passwords including a separate one for
sites who I think might store it in plain text. unfortunately I didn't think
for a minute that an ISP would do this, so I used a relatively secure
password for them.
if I can't trust anyone to encrypt my password, it seems that the only way
to be secure is to use a different password for every system and then write
them all down somewhere.
I am an IT professional and I get the impression that most people currently
take a similar approach to me. If not, what's the best way to manage so many
passwords?
Andy
I just got a nice email from fasthosts - a UK ISP - saying that they have
had a security breach and have lost security details including my password
IN PLAIN TEXT !!
because I use the same password for different online systems, this means
someone who found out my email address (the real one - not the one I'm using
to post this) and fasthosts password could potentially log on as me to many
different sites.
fortunately I use several different passwords including a separate one for
sites who I think might store it in plain text. unfortunately I didn't think
for a minute that an ISP would do this, so I used a relatively secure
password for them.
if I can't trust anyone to encrypt my password, it seems that the only way
to be secure is to use a different password for every system and then write
them all down somewhere.
I am an IT professional and I get the impression that most people currently
take a similar approach to me. If not, what's the best way to manage so many
passwords?
Andy