本周早些时候，我们请您分享管理和组织密码的技巧。现在我们回到重点工具，技巧和技巧，你用你的密码和互联网安全。

莱纳斯·博曼摄。

周三我们的读者提问得到了大量的回复；你们记录了数百条回复。这些回答涵盖了你最喜欢的软件，你用来生成没有软件的密码技巧，等等。让我们先看看你用来管理钥匙圈的流行应用程序。

上道、下道和各种尺寸的道

大多数人都在使用某种密码管理器来管理和组织密码。使用应用程序是一个很好的方法来跟踪你的密码，因为它从根本上消除了你的大脑从整个方程，并允许你分配随机生成的密码，以每一个登录你使用。很少有人能记住200次登录，而这些登录都是随机的，就像“&xv$v1oGkuXjs*OBfS79”。以下应用程序按它们在您的评论中出现的次数排序。

LastPass:LastPass是一个基于web的解决方案，作为一个整体，读者绝对喜欢它。它使良好的密码管理非常容易。你们中有不少人评论说，在尝试LastPass之前，你是如何**的，直到你最终尝试了一下并爱上了它（这反映了我自己坚持使用LastPass的经历，但当我最终开始使用它时，却发现它完全棒极了）。Gouthaman强调了LastPass的一个优点：

All my passwords are offered automatically by LastPass when creating an account and they pop-up whenever I need to login. This means that I use a different password for every single web service and yeah, I don’t even remember my Twitter/Facebook/Google password, but my LastPass does!

Kaylin指出，切换到LastPass已经彻底改变了她的密码安全方法：

LastPass Premium remembers passwords for me. Before that, I had one or two major passwords that I used for most sites. Then I came to realize that method is risky. My LastPass score was only 13 when I started using it, and now I have a much better score because I have changed my habits, thanks to LastPass.

出于好奇，Kaylin指的是LastPass安全挑战。LastPass用户可以接受这个挑战，对您的密码进行本地和安全分析，看看您的密码实践有多好。它会扫描你的密码库，检查你是否使用不同的密码、多因素身份验证以及你存储的密码数，然后根据这些来分配分数。

LastPass提供免费服务和每年12美元的优质服务。您可以在这里比较免费和高级服务。

KeePass：你们中的许多人只是对将密码密钥环同步到云端的想法感到不舒服，不管加密和测试的机制有多好。这排除了LastPass的可能性，但使您成为KeePass的主要候选人，KeePass是一个拥有大量追随者的开源密码管理器。KeePass提供了几乎所有与LastPass随机密码生成相同的基本功能，基于类别的组织只需要稍微麻烦一点就可以将内容同步到浏览器。你们克服了KeePass的限制，进行了各种各样的破解和修复。Dave是众多使用Dropbox在机器之间同步KeePass数据库的读者之一：

KeePass, on Dropbox for access by my several machines. On crucial sites (banking, credit cards, &c.) I use 20+ character gobbledygook passwords generated by KeePass. On many forum-type sites I use the same old user name and password, since the worst that could happen is that someone could post something in my non-recognizable name.

Doc使用KeePass，并对只使用少数几个简单密码提出了严厉的建议：

KeePass Portable on my D: drive, with another copy (program & database) on my USB drive…password protected, of course.

To those that use “1 or 2 or 12 passwords for everything”…just wait until an account is hacked and somebody you thought you could trust is rummaging through your bank account and emails. If you’re that lax in keeping your password secure, you’re probably using your birthday, your middle name, etc. to generate all these passwords…and they’re easily cracked. Use uppercase and lowercase letters, numbers, and some punctuation to generate real random passwords and store them securely! Better yet, change a few of them each week just to be safer. (Just ask Sony how much pain a hacked account can cause!)

Roboform：虽然不像LastPass和KeePass那样受欢迎，但由于一个动力不足的免费选项和一个价格相当高的商业选项，Roboform仍然拥有强大的追随者。它既可以是基于web的解决方案，也可以是基于桌面的解决方案。Robbie在这里提供了一个可靠的服务概述：

Roboform (now known as Roboform Anywhere).

Has the advantage of automatically (and securely) synchronizing your passwords across all your instances (unlimited).

Has a very nice configurable password generator feature for times when you want maximum security or when you don’t feel like thinking of a new password.

Also lets you attach notes to each login, allowing you to save things like answers to those annoying security questi*** that you’ll never remember the exact answer several years from now.

If you are using someone else’s computer or don’t want to install Roboform on a particular machine, you can look up your username & password on online.roboform.com.

Roboform有三个版本免费，桌面版（30美元）和随处版（每年20美元，第一年10美元）。你可以在这里比较版本。

使用你的大脑和模拟解决方案

尽管基于应用程序的解决方案很方便，但有些人更喜欢使用基于内存的解决方案或基于模拟的解决方案。不少读者分享了他们使用心理算法的技巧。吉姆给出了最详细的解释：

[I use] 3 stages: 1) a set of words – sentence, phrase, addresses etc that you can remember – needs to make a string that is at least 50 characters long 2) an algorithm that allows you to get a set of characters from that set of words – such as every ‘n’ characters 3) write down the start point in that string, and the value of ‘n’ that you will use and the number of characters…

And – for those ‘passwords’ that require numeric values the location within the string of the numeric that will be generated from the alpha code in the string – either a=1..i=9, j=10 etc.

And for those that require a non-numeric character there is the characters associated with the number on the keyboard that you get from using the number generator from the string

So – that’s 3 numbers, and optionally – another 1 or 2 numbers. You get to write down a 5 digit code that lets you re-create the passcode, but never write down the source string so no-one else can calculate it. For the number and special character – you decide if the clue number is going to be from the string start, from the startpoint (first number) , or from the end point 1st+2nd*3rd etc.

Once you have the algorithm pick a character to be the Capital letter, the number and the special character. C***istency makes it easy to remember the character selection algorithm/calculation/formula and after a while you won’t even have problems remembering the source string.

Source – string – what names etc. do you pass on the way to work – streets, shops, business names! Avoid bringing the relati*** [such as a spouses name] into it.

虽然他的技术是彻底的，但这肯定比让密码管理器为您随机生成和调用密码要多一些工作。

作为将它们全部记住和数字化存储的中间环节，你们中的一些人选择了一个基于纸张的系统。浮木写道：

As my spouse is not computer literate (read that geek) we keep our passwords in a binder near the computer. It’s not elegant nor geeky, but it works well for us, and if I’m not available someone else that needs in can get there.

Richard将密码作为方法：

Since 1981, I’ve used index cards and index card file box. Low tech and always handy.

艾德龙走的是老派路线：

I have a composition notebook with all my passwords and save it in a 2 ton safe where my birth certificate and gold are stored.

现在你们中的一些人可能会对在纸上存储密码的想法摇头。然而，现实地说，有人闯入你家窃取你密码的几率几乎为零。即使你的家被盗窃了，他们也会在那里买东西，比如电子产品和珠宝，而不是像盗取你的身份和试图从你的银行账户里捞钱这样的长期骗局。你可以在上一篇文章中阅读更多关于我们对它的看法写下你的密码有什么问题。

有关您的读者如何存储密码的更多信息，请务必点击本文原文的冗长评论。有什么小窍门可以分享吗？在这里的评论中发出声音。