Ten Places NOT to Hide Your Password
Ten Places NOT to Hide Your Password
Auditors and attackers look for passwords in common hiding places. If you must write down your password, keep it in a safe place, just as you would cash. Do not write the full password. Use a code or a memory jogger. Here is a list of places where auditors have found passwords! (You should not put your passwords in any of these locations):
1. On a note inside a book’s pages
2. On the ceiling
3. On a sticky note on the underside of a shelf or drawer
4. On a note thrown into the trash without shredding
5. On a note in the drawer under the pencil tray
6. On a note behind the lamp
7. On a note under the keyboard
8. On a sticky note on the monitor
9. Behind the calendar
10. In plain sight mixed into other writing on a chalk or dry erase board
If you must write your passwords down store them securely, either physically locked up or protected by password or biometric.
Categories
General0 TrackBacks
Listed below are links to blogs that reference this entry: Ten Places NOT to Hide Your Password.
TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/76
1 Comments
Leave a comment
Powered by Ajax Comments
>> either physically locked up or protected by password
I use a gpg encrypted file to store my passwords and the decrypted file contains content like:
hotmail.com - k1|k4
gmail.com - k2|k3
where k1,k2,k3,k4 stands for phrases I have committed to memory.