Digital Security 101 - Passwords

Passwords are part of our daily life. Every time we visit a site where we must log in, it requests a passcode -usually an e-mail address and password-. Many people are lazy and use the same password in every site which is plain wrong because if there's a security breach they might get exposed and hackers could get access to the accounts.

Using a password manager like Bitwarden, Keepass or 1Password should be mandatory nowadays. These programs allow you to save your passwords in a secure place in which you and only you have access.

I've been using Bitwarden↗ for almost 4 years now. It keeps my passwords synced across my devices (mobile phone, laptop). The app is free, open source and there are no security breaches known until now. There's a paid tier which offers the option to manage the 2FA tokens along with the passwords. Some people think it might be risky since it would be like putting all your eggs in one basket but it depends on your threat model.

If your are cautious and want to use a separete 2FA app, then Ente Auth↗ is a great option. Like Bitwarden it's free, open source and cross platform meaning that your accounts and tokens are always synced.

No matter what operating system you are using (Windows, MacOS, Linux) or mobile device (android, iOS), both Bitwarden and Ente Auth cover all the bases.

If you don't like to mess with password managers, many sites are accepting the use of passkeys, a passwordless authentication like fingerprints, facial recognition or a device like a Yubikey↗ . But even so a password is requiered to create the account and to get access in case the passkey won't work.