You must log in or # to comment.
Honestly, for at home personal use, it’s better than any on device password manager. It’s not hackable. Someone has to break into your home and steal it. For an office environment though…worst way to handle it after sticky notes.
It’s actually super useful for old people, who sometimes like to “accidentally log off” and stuff.
Still waiting for passkey support
This isn’t the flex you think it is, OP. 99% of cybercriminals are also cowards. Physical security of ANY kind beats even the best password managers.
If you don’t know what lattice-based encryption is and how to purchase it through NordVPN, start reading up because encryption as we know it isn’t long for this world. Pretty sure they already dragged their feet too long on Bitcoin’s algorithm but the day cracking common ciphers is within the grasp of quantum clusters is the day we all become Amish. Plan accordingly!
My understanding is that quantum computing has been taken into account for some modern cryptography. And that memory-hard cryptography basically defeats quantum computing solutions. There are a few methods, but one of them is just very long keys, it’s trivial to make a cryptographic key longer.
So sure, you could defeat some of that with a machine operating with 1024 entangled qbits, (which is… oh man… not an easy task), in which case, wow, congratulations. But what if I increase my key length to 100k? It might take an extra 3 seconds to check the key and log in, but it’ll take an extra 25 years for quantum computing to catch up.
Can’t wait to hand write my 32-bit passwords.
PSA: Home use? That’s probably okay. Work use? If you’re in-office, this is a ticking time-bomb that can get you fired, one way or another. Use the company 1password or whatever you have access to, please. Thank you.
InfoSec likes nothing more than for you to tell them not to worry because you write all your passwords down and only read emails after you’ve printed them. 100% secure.
In my office I have a list that says passwords all nonsens and just as a decoy. I have a system that I use for rotation woth a visual reminder (by association, not directly) somwhere in my office
we might laugh at this but I think this is useful. Even though I wouldn’t use something like this and I’d just use a regular dedicated blank notebook and my password manager, it can be useful to people who have problems with computers and can’t handle a password manager, yet may give pages with good templates to show how to record sensitive information.
I have hundreds of logins, the convenience of a password manager is just too nice.
Self hosted and air gapped.
And very power efficient
The indexing and search need improvement.
Quantum proof
I dropped my book and now debt collectors are after me. 0/5 would not recommend.
Still better than using the same password everywhere and/or saving passwords in an unencrypted text file on your computer somewhere.
Just not very user friendly.
I’m going back to paper for most things and I don’t know man, I think it’s more user friendly given the current tech landscape. My paper notebook never changed the interface to add a huge Copilot button.
Neither did my laptop, desktop, or phone. I use Linux and GrapheneOS, so I don’t deal with most of the nonsense people have been complaining about.
Neither did my laptop, desktop, or phone. I use Linux and GrapheneOS
GrapheneOS is a significantly more complicated and less accessible option for most users compared to a simple paper notebook, which is the context of this post.
But if you want to go this deep, then yes, maybe your phone using your custom OS never introduced Gemini or Copilot without your will. It is however running a Qualcomm modem firmware you can’t control and is phoning home, regardless of your GrapheneOS settings, with your GPS coordinates and other data you can’t read, at any time. Don’t worry, with tech we can always find a malicious feature that works against the user, regardless of how deep you want to dive.
It is however running a Qualcomm modem firmware you can’t control and is phoning home, regardless of your GrapheneOS settings, with your GPS coordinates and other data you can’t read, at any time.
Can you expand upon this?
Sure, there are always things you can’t control in a mobile phone because modem manufacturers don’t like to give up that control (and I’m sure there are regulatory concerns as well).
My point is that if you don’t want Gemini, Copilot or whatever, you can make choices to avoid them. Each choice has consequences, and some just reveal issues you had ignored up to that point (e.g. your modem issue).
But why not a paper notebook? For me:
- easy to lose/forget to pack on trips; can’t lose a cloud service
- paper doesn’t have a good backup mechanism
- can’t copy/paste into my devices from a paper notebook
- I’m much less likely to use good, random passwords with a notebook
I use Bitwarden, which gives me a lot of convenience, allows me to self-host and iwny data, and encourages me to use really strong passwords.
It is very user friendly, at least for reliability and security if you keep it in a safe location. It is cumbersome and slow.
Honestly, a physical password book isn’t a bad idea.
Not accessible via the internet, and in most cases if someone has physical access to your system you’re done for anyway.
The main weakness it has is from a nosey flatmate, spouse, or child in the house.
Yep. My Dad in his late 70s uses this system and it works great for him.
People make fun of it, but for people with low tech literacy this is actually far better than having a mish-mash of solutions where some their logins end up automatically saved in iOS on their phone, some are saved in Chrome on the desktop, some are just in their head, they don’t know where anything is, and are constantly losing access and resetting credentials all the time.
And it definitely reduces the burden on me of parental tech support, when its all in the book.
The main weakness it has is from a nosey flatmate, spouse, or child in the house.
Watch out for that home grown script kiddie
“People can no longer remember passwords good enough to reliably defend against dictionary attacks, and are much more secure if they choose a password too complicated to remember and then write it down.
We’re all good at securing small pieces of paper. I recommend that people write their valuable passwords down on a small piece of paper, and keep it with their other valuable small pieces of paper: in their wallet.
Obscure it somehow if you want added security: write “bank” instead of the URL of your bank, transpose some of the characters, leave off your userid. This will give you a little bit of time if you lose your wallet and have to change your passwords. But even if you don’t do any of this, writing down your impossible-to-memorize password is more secure than making your password easy to memorize.”
Is it AI powered tho?
Oh yeah, this is for my in-laws. This is peak boomer tech right here.
Of the 200 elderly I see maybe 75% still use the book or a variation of it.
The best is when they use iPad notes or even their fucking contacts to save info lol
Sure, it’s a horrible idea in an open office environment but if someone wants to use this at home for all their passwords it really won’t hurt anything.
My mother uses something similar to keep track of her passwords for everything. While I prefer a password manager like Bitwarden or Keepass. I would rather her use a note book like this over something like Google or Apples password managers.
Or even worse, the same password for everything.
Best option for non techies at home.
I’ve not found anything better. Storing on my computer, or worse someone else’s computer, doesn’t seem safe.
The trick is to use code language, and don’t forget the code. Then you can use digital sources more freely, I feel.
