Results 1 to 14 of 14

Is it a little worrisome to keep a data file with all your passwords on ... General Blackberry forum

  1. #1
    s-one's Avatar
    s-one no está en línea Stack level 2
    Join Date
    Apr 2008
    Posts
    54

    For those that use a password app on your BB

    Advertisement



    Is it a little worrisome to keep a data file with all your passwords on your BB? I realize the file is encrypted and requires a password to get in but there are people who can crackem. Say you lose your phone or some BB hacker goes disco over unlimited connection? Share your thoughts...

    Thanks,
    s-one

  2. #2
    CybaCowboy's Avatar
    CybaCowboy no está en línea Stack level 3
    Join Date
    Feb 2008
    PIN/ID
    21445DCA
    Posts
    374
    Whilst there's not a software title in the world that can TRULY guarantee your data will be secure, there are some that are better than others...


    When it comes to applications such as these, I generally look to Open Source software - the theory is that Open Source software is more secure because ANYONE can see the (computer) code behind the application, and as such they will know where the flaws are; furthermore, because the code is visible to EVERYONE, security flaws in Open Source software are typically updated quickly, in some cases quicker than a flaw is updated in comcercial software!


    Which brings me to my suggested software...


    I STRONGLY recommend KeePass.

    KeePass ws originally a desktop password manager (see http://en.wikipedia.org/wiki/KeePass), but due to its reliability and level of security, has quickly evolved and become available for MOST operating systems.

    What makes KeePass unique is the level of encryption it supports - KeePass uses the same types of encryption that many high-level Governments use, thus making the software ridiciously difficult t crack.


    Off the top-of-my-head, KeePass is available for Microsoft Windows, Research in Motion (RIM) BlackBerry OS, Linux, Microsoft Windows Mobile and Sun Microsystems' Java 2: Micro Edition ("J2ME")-enabled mobile phones; there is also a sister project ("KeePassX") by the Open Source Community for Apple Mac OS X.

    The BlackBerry version is available at:
    http://keepassbb.sourceforge.net/ota/keepassbb.jad

    There are links and information to all the different versions at:
    http://www.keepass.info

    You can get detailed information (including the history and security behind KeePass) at:
    http://en.wikipedia.org/wiki/KeePass



    ~ Posted wirelessly from my BlackBerry 8800 (http://wap.pinstack.com) ~

  3. #3
    CybaCowboy's Avatar
    CybaCowboy no está en línea Stack level 3
    Join Date
    Feb 2008
    PIN/ID
    21445DCA
    Posts
    374
    The above link is the DIRECT download link to the BlackBerry version - if you just want to read-up about the BlackBerry version, check out:

    http://sourceforge.net/projects/keepassbb/



    ~ Posted wirelessly from my BlackBerry 8800 (http://wap.pinstack.com) ~

  4. #4
    kingrykku27's Avatar
    kingrykku27 no está en línea Stack level 4
    Join Date
    Aug 2007
    PIN/ID
    2444409C
    Posts
    568
    That look interesting, cyba.

    I just use the highest encryption mode available on my pearl. Always locked if I'm not touching it.

    ~via BB (wap.pinstack.com)~

  5. #5
    s-one's Avatar
    s-one no está en línea Stack level 2
    Join Date
    Apr 2008
    Posts
    54
    I gotcha cyba and thank you for the info. I'm new to BB but have indeed use keepass for my laptop. Although I never keep the data file on my laptop but on a usb drive stored safely away only whipping it as needed. I'm tempted to use it with my BB but just worried if I ever lose it, there goes my data file too. You get what I mean? Btw keepass is the best pwd tool out there.

  6. #6
    macallik's Avatar
    macallik no está en línea Stack level 4
    Join Date
    Jun 2007
    PIN/ID
    AskMe
    Posts
    874
    Im checking this out now...

  7. #7
    Rhokk222's Avatar
    Rhokk222 no está en línea Stack level 2
    Join Date
    Feb 2008
    PIN/ID
    204FF9DF
    Posts
    85
    that was great info Cyba!
    ...always tinkering...

  8. #8
    CybaCowboy's Avatar
    CybaCowboy no está en línea Stack level 3
    Join Date
    Feb 2008
    PIN/ID
    21445DCA
    Posts
    374
    Quote Originally Posted by s-one View Post
    I'm tempted to use it with my BB but just worried if I ever lose it, there goes my data file too.

    If you have a strong enough password, you have little to worry about...


    Here's a few tips for passwords in general:
    • NEVER, EVER use an ordinary word for your password (ESPCIALLY for a password storage system such Keepass).
    • Try to include MiXeD cAsE in your password, as well as numbers and symbols (where allowed).
    • For online banking, use a completely seperate password that is different to everything else.
    • Use a password that is a minimum of eight characters, and as random as possible.
    • Change your password at least every 6-12 months.

    If you want to be especially safe, you can use a "super password" for your password wallet, and then seperate passwords for everything else...

    For example, I have a 20-character, MiXeD cAsE with numbers, COMPLETELY random password for KeePass, and then shorter, (MiXeD cAsE with numbers, COMPLETELY random) passwords for every thing else - with a password wallet, you really only have to remember one password.

    The longer and more random a password is, the more unlikely that someone will be able to crack it!



    ~ Posted wirelessly from my BlackBerry 8800 (http://wap.pinstack.com) ~

  9. #9
    s-one's Avatar
    s-one no está en línea Stack level 2
    Join Date
    Apr 2008
    Posts
    54
    Yep... Very good info cyba. Thanks,

    s-one

  10. #10
    FF2's Avatar
    FF2
    FF2 no está en línea Stack level 2
    Join Date
    Feb 2008
    Posts
    79
    "or example, I have a 20-character, MiXeD cAsE with numbers, COMPLETELY random password for KeePass, and then shorter, (MiXeD cAsE with numbers, COMPLETELY random) passwords for every thing else - with a password wallet, you really only have to remember one password.
    "

    Not that I want your password (g) but how do you remember a completely random 20 character password. Maybe it's my age but I have trouble remembering if I changed my work's computer password after a weekend has passed!!!!!

  11. #11
    sender's Avatar
    sender no está en línea Stack level 2
    Join Date
    Jan 2008
    PIN/ID
    204C1561
    Posts
    26
    Thanks for the good info, will check these out as I have not yet used the BB password program and I have been looking for one. My biggest problem is sites that do not allow symbols as part of their passwords. It's almost tempting to no longer use such sites because of their lack of regard for increasing security for its users.

  12. #12
    CybaCowboy's Avatar
    CybaCowboy no está en línea Stack level 3
    Join Date
    Feb 2008
    PIN/ID
    21445DCA
    Posts
    374
    Quote Originally Posted by FF2 View Post
    Not that I want your password (g) but how do you remember a completely random 20 character password.
    I carried it around on a piece of paper for a week whilst I memorized it; I also tried to use my password as much as possible during that week.


    I wouldn't put it to the test for fear of being proved wrong, but I've been told it would take a super computer about ten years to crack my "master" password! ;-)


    Quote Originally Posted by sender View Post
    My biggest problem is sites that do not allow symbols as part of their passwords. It's almost tempting to no longer use such sites because of their lack of regard for increasing security for its users.
    Yeah, it never ceases to amaze me just how insecure Internet sites are with regards to passwords...

    Outside of Government and enterprise systems, I've only ever seen one or two Internet sites that support passwords with symbols, and many place ridicilous length limits on their passwords.



    ~ Posted wirelessly from my BlackBerry 8800 (http://wap.pinstack.com) ~

  13. #13
    chatster18's Avatar
    chatster18 no está en línea Stack level 5
    Join Date
    Nov 2006
    PIN/ID
    ASK
    Posts
    1,121
    Thanks for the great info Cyba!
    it's always greener with the other carrier...

  14. #14
    CybaCowboy's Avatar
    CybaCowboy no está en línea Stack level 3
    Join Date
    Feb 2008
    PIN/ID
    21445DCA
    Posts
    374
    Anytime.



    ~ Posted wirelessly from my BlackBerry 8800 (http://wap.pinstack.com) ~

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •