August 4, 2016
Using a Password Manager is a good idea for keeping up with the multitude of passwords that one must maintain. However, the key to the whole thing is the master password.
What do you make of that?
It needs to be beefy, tough to guess, but easy to remember, and hard as nails to crack. So it must be long. But how long? At least 16 characters, I would say. Letters and numbers. Is that enough? Maybe to keep your kid brother out. But don’t let that be enough if you are facing down government agencies or hacker groups with large server farms (botnets or AWS).
Furthermore, I need to test if the master password is easy to change. It must be changed once in a while. Just in case the host computer stores it in some sort of cache.