Brad Rogers <brad@fineby.me.uk> wrote on 20/03/2024 at 19:03:48+0100: > [[PGP Signed Part:No public key for 0F3EE001F02A3E20 created at 2024-03-20T19:03:48+0100 using RSA]] > On Wed, 20 Mar 2024 18:46:04 +0100 > Pierre-Elliott Bécue <peb@debian.org> wrote: > > Hello Pierre-Elliott, > >>You have a rather bad cybersecurity approach. > > I use password generators and vaults for all my passwords. Nothing > wrong with my cyber-security. When you state that something like "writing down" a password is reasonable in one's home as if this actual home were a heaven of safety, I beg to differ. Happy to know you actually have a more sensible approach in practice. That being said, your root password might be needed in situations where a vault is not accessible yet (let's say your laptop is in a bad shape). So a vault can not be enough. > Also note that I put 'written down' in single quotes - it was meant to > indicate that the term could be a euphemism for such things as stored in > a password vault, a secure note on a mobile phone, and so on. It's not the original point of the thread, so while I can understand and agree your understanding of "written down" not including a paper or paperbook, it was clearly not the understanding of the initial post. I guess I'll leave things there for good, anyway, people will do whatever they think is best, regardless of cyber-security concerns. -- PEB
Attachment:
signature.asc
Description: PGP signature