Question for 1password users

I use 14 random also. I also use a mix of numbers letters and symbols. The beauty of the app is that you no longer need to remember any of the passwords as they are pasted directly into the log in forms as required. There are the odd ones i have set up manually that I need to remember when I don't have my devices with me.

Its probably the most used and best app I have ever bought. I don't think I could do without it to be honest.

 

I think its as secure as it can be. Nothing is 100% unless you can remember them all in your head. The file is either stored locally on your machine or in the cloud which is where the risk lies I guess. !Password does say that all the DB are encrypted so as I say, I think its the best option and I know of no better way.

 

1Password is as good as it gets. A bit expensive to buy at first but well worth it. I like to use phrases that only I know but random alpha numeric character generated passwords are likewise good.

 

Here is the short version.

It is not going to matter if you fail to regularly change passwords. The people cracking the account may not be the people using that account.

Dictionary words and common passwords will fail first. Then all lower case and all upper case passwords will fail, and so on until you get to passwords with upper, lower, number, and punctuation, which will also eventually fail but will take the longest time to fail. Also, investigators will feed personal information into the dictionary attack.

If you are using 1password to store your passwords instead of your brain then yes, random is better. If you do not trust the generator to be random, change a few of the characters.

If you have two-factor available for at least financials, you should definitely enable it to reduce brute force effectiveness. Treat recovery questions as passwords too.

 

1P is the best. Been using it for years. Use randomly generated. No reason to try and make it up on your own. The 1P database is encrypted and not stored with AgileBits so a security breach with the company would have no affect on your passwords. I guess they could steal your credit card info though if the hacked Agile Bits.

 

Password generator and whatever maximum length the given site supports.

They don't store your vault.