Sinabro

I feel slightly safer.

I just changed my Google Account password (along with another important account). This is the password that I used to treat as “secure” for quite a while, and well, it might have been. At least I know for sure that it has never been transmitted in cleartext (I only type that into Google Accounts and trusted resellers, who all use SSL for such connections), but frankly, it has been “shared” with too many entities. I have been assuming that they all encrypt user passwords and take good care of them … but what if they haven’t?

So, I changed my important passwords. I will continue to change my passwords until none of them are identical.

Of course, I have no hope of remembering so many passwords by myself … but I will manage.

Password changes are in progress.

I had a good look back at what I have so far, and looking at my password list and how every one of them is the same, this scared me.

So, I am changing all my passwords on various systems. It’ll probably take a while, since I am doing it each time I log on. I can’t possibly hope to remember all the systems where I have a password.

This time, I will use a randomly generated password. No mnemonics. And I will do what the security professionals recommend: write it down. (Or, alternatively, let some other program remember it for me.)