@@askleonotenboom I watch all your help and sometimes don't see the logic in it. How would phone oriented 2 factor authenticating fail? Seems that someone would have to hack your phone, which would be quite difficult. You say it is a dangerous practice. Exactly what is the danger in it?
@@glasslinger 1. Would you only use this same password with accounts with 2FA activated, or also with accounts where 2FA is not possible? - Then those latter accounts wouldn't be secure at all... 2. What form of 2FA are we even talking about? SMS, E-Mail, push-app, TOTP, Security Key, ...? They are not evenly secure... and mostly not 100% secure. And if your password is leaked and everywhere the same, your "2FA" would be reduced to "1FA" then, so to speak...
Then you have much bigger problems beyond just credential stuffing. However most password managers make this EXTREMELY difficult, and difficult to use if ever captured. For example, if your password manager itself supports 2FA, enabling that makes this close to a non-issue.
The safest way to remember your passwords is to WRITE THEM DOWN. Stop trusting the cloud or some program . ANY of those can be hacked. WRITE THEM DOWN with your own hands.
@@askleonotenboom Yes, they're safe - until they aren't. Nope, sorry. I've seen too many dustups where people lost a bunch of info which had been assured safe. I keep a notepad with my passwords and I write them down. Unless someone is specifically going to come to my house and root around trying to find it, that's where they stay. No internet setup is safer than simply not being there at all.
Guilty! How do I get over the fear of using a password manager and that I am not in control? I have a fear of one day I'll wake up and be locked out of everything because I do not have the password on my secret cheat sheet. I keep telling myself that I should but fear always sets in and takes over. JimE
If you use the same password on every site, it is not important whether the password is strong or weak - if your password get's leaked, it's leaked... and can be used on your every site
✅ Watch next ▶ Why Password Managers Are [Still] Safer than the Alternatives
▶ ua-cam.com/video/h_37XLfoHco/v-deo.html
Simple video to the point not 5 ads in the middle , you're the best Leo I've ever seen 😁
You have explained it very well
Is same password OK with 2 factor authorization? How could they intercept my phone in time to use the code which is only valid for a minute.
No, it's not recommended.
Not OK. While 2FA helps, it's still a dangerous practice.
@@askleonotenboom I watch all your help and sometimes don't see the logic in it. How would phone oriented 2 factor authenticating fail? Seems that someone would have to hack your phone, which would be quite difficult. You say it is a dangerous practice. Exactly what is the danger in it?
@@glasslinger
1. Would you only use this same password with accounts with 2FA activated, or also with accounts where 2FA is not possible? - Then those latter accounts wouldn't be secure at all...
2. What form of 2FA are we even talking about? SMS, E-Mail, push-app, TOTP, Security Key, ...? They are not evenly secure... and mostly not 100% secure. And if your password is leaked and everywhere the same, your "2FA" would be reduced to "1FA" then, so to speak...
@@glasslinger Two factor can be bypassed in real time with a man-in-the-middle attack. askleo.com/two-factor-hack/
What say they hack your Password Mangers password?.
Then you have much bigger problems beyond just credential stuffing. However most password managers make this EXTREMELY difficult, and difficult to use if ever captured. For example, if your password manager itself supports 2FA, enabling that makes this close to a non-issue.
@@askleonotenboom Thanks Leo
And the good news is that son, you will not need passwords at all, but until then, do what the guy says.
some services like Microsoft offer passwordless accounts. Some are starting to offer passkeys
The safest way to remember your passwords is to WRITE THEM DOWN. Stop trusting the cloud or some program . ANY of those can be hacked. WRITE THEM DOWN with your own hands.
I respectfully and strongly disagree. askleo.com/are_password_managers_safe/
@@askleonotenboom Yes, they're safe - until they aren't. Nope, sorry. I've seen too many dustups where people lost a bunch of info which had been assured safe. I keep a notepad with my passwords and I write them down. Unless someone is specifically going to come to my house and root around trying to find it, that's where they stay. No internet setup is safer than simply not being there at all.
Guilty!
How do I get over the fear of using a password manager and that I am not in control? I have a fear of one day I'll wake up and be locked out of everything because I do not have the password on my secret cheat sheet.
I keep telling myself that I should but fear always sets in and takes over. JimE
Two articles for you:
askleo.com/are_password_managers_safe/
askleo.com/lose-access-to-my-password-vault/
@@askleonotenboom Thanks again Leo. I'll read them both and try to gain some confidence. JimE
And people forget passwords having to make each different so thats a weakness there
Nothing beats pen and paper. Just now they hack password managers 😅
you ever been a victime of this b4 the problem is ppl are using week passwords
If you use the same password on every site, it is not important whether the password is strong or weak - if your password get's leaked, it's leaked... and can be used on your every site
@@unmapped89361 yes i know but strong passwords is a must to to may ppl use weak ones hope that helps
Two videos in one day...and you're wearing a suit (or is that a jacket)? What's going on here?
Must be cold, it looks like a thermal jacket.
Two videos: an accident. No video Friday to make up for it. :-)
That's a light zippered sweatshirt. Sometimes it can be a little chilly.
@@askleonotenboom No video Friday? But today is Friday...and there's a new vid!
@@askleonotenboom Pace yourself Leo, you might run out of topics/issues to discuss. lol.