Memory Tools for Password Management?

New Media Blogger asks: "A co-worker of mine recently got burned hard because they used the same password for all of their online accounts. This experience led me to compile a list of easy-to-use password management memory tools (all free, of course), which make it infinitely easier for me to keep track of my dozens of passwords. I am sure many of the Slashdot crowd have memory tools of their own — what are you favourite password memorization tools?"

Hiding

[halcyon1234]

Hiding my passwords in first post yt66axe

ROT26

[dead.phoenix.616]

I've kept this a secret to the whole community, but
I invented this super hard-to-crack encryption routine
called ROT26x(tm). There are other off-springs in the
multiples of its own 26 bits (52, 78, 104...etc).

The cool part of it is that once you encrypt your stuff,
it is soo hard to crack, because the outcome looks exactly
like the original text you encrypted!

The larger the multiples, the more its difficult to
crack (disclaimer:higher bits will be very cpu-intensive,
and will take longer to encrypt)

if anybody wants to help write up an RFC...

12345

[liam193]

Of course you could use 12345 for all your passwords. Wait, no don't do that; that's already used for my luggage.

Parody

[Anonymous Coward]

* Getting halcyon1234's password from his own post                     - 5 seconds
* Checking to make sure it was real                                    - 20 seconds
* Customizing his user account to display a custom "goatse" slashbox   - Priceless

There are some things money can't buy.  For everything else, you should change your password!

Obviously Offtopic!

[rts008]

Can I get a DMCA takedown request for your post since that's my luggage password?

Or do we have to compare receipts for date of purchace/senoirity to settle this.

My second will meet you on the Field of Honor for our duel......I suggest Tesla Coils at 25 meters, in the English Channel, at 50 meters below sea level.

You have been challenged sirrah!

Do As Bruce Schneier Does

[Anonymous Coward]

Shamelessy ripped from http://geekz.co.uk/schneierfacts/fact/27 [geekz.co.uk]

Most people use passwords. Some people use passphrases. Bruce Schneier uses an epic passpoem, detailing the life and works of seven mythical Norse heroes.

Re:Hiding

[Short Circuit]

The beauty of this is that no one has your password except you. And if you forget the generated password, you can always regen it by entering the exact same information. However, since hashes can't be reversed, your master password will not be compromised even if a lame admin compromises your generated password on his site.

Until the site with the hashing algorithm you're using goes offline. (Unless you saved it, of course.)

My system is similar, yet much easier. The first portion of my password is the name of the computer or service I'm connecting to, while the second half is a random string that only I know. Which string I use depends on what group of people I need to share the account with--in such cases where an account needs to be shared. Otherwise, I have my own string.

The downside, is that if someone were to sniff one of my passwords, and if they're familiar with my system, they could then guess the passwords to most of my accounts. Which is why I change that suffix relatively frequently. The upside, of course, is that I have a different password for every single computer and service I log into.

Re:Hiding

[AKAImBatman]

Look again. The download page has:

• Browser Extension
  
• Yahoo! Widget
  
• JavaScript Edition
  
• Command-Line Edition
  
• PHP Edition
  
• Mobile Edition
  
• PDF Manual
  

The best system is one that you can keep in your head.

Certainly. So download the source code and memorize the algorithm. Then you can do the hash in your head. :-P

Re:Hiding

[simm1701]

You mean you can't run a md5 hash then base 64 encode it in your head???

What kind of geek are you!! ;)

Re:Put it all in context

[Phisbut]

Or use a password Pattern

... and now I know your /. password : fkp4sddo