I'd like to use a password manager but I'm not comfortable with that
data being on some server somewhere- allegedly encrypted or not.

If there's one that keeps the data just on the local machine, I'd be
interested.

I keep a spreadsheet with my PWs on my FileVault-encrypted iMac hard
drive and copy/paste to logins that need to stay secure- financial,
vendors, healthcare, etc.

I always log out before leaving the house.

I don't see anything wrong with using Apple's built-in Keychain password
manager. The only drawback it has is that it's Apple-only, and that has
never been a reason not to use it for me. Most of my family uses it and
is happy with it.

The iCloud Keychain service is optional and seamlessly synchronizes your
password database between all of your Apple devices. It is also highly
encrypted using end-to-end encryption so that it cannot be accessed by
anyone but you.

Others here will recommend cross-platform solutions, but if you have no
need for synchronizing your password database to other platforms,
Apple's built-in Keychain is quite a secure and capable solution, and
it's integrated with all of Apple's operating systems by default.

I use an old electronic organizer to store my passwords, and I keep a
printed hard copy locked in my safe. I don’t trust anything more
technological than that combination.

I use 1Password. Be careful of the option you select. They are leaning
towards "rent" model which I despise.

You can keep the encrypted master file on iCloud or Dropbox so it's
available to all of your devices. Avoid the 'rent' model if possible.

On Mon, 12 Jul 2021 09:53:00 +0000, Unbreakable Disease
For what it's worth, I like LastPass. I'm not crazy about the fact
that I can't use it on multiple devices without having to pay for it,
but I can't begrudge the software developers over there the right to
earn a living.

The best strengths in current password technology are in passphrases:

https://useapassphrase.com

There's some great stats in there, such as the amount of time it takes
to crack common spatial word passwords such as "qwerty" or "aaaaaa"...
10 milliseconds.

Or how long it takes to crack a password that's a date like
"03261981"... 2.213 seconds.

However, if you use a sequence of four randomly chosen words like
"mergers decade labeled manager", it'll take 6 million centuries to
crack.

So.

I've converted all my passwords to sequences of four to six words; and
I have an email account at a provider that I've never used to send
email to anyone, or to use as the id for any website. There, I have a
draft of an email saved that holds the information.

I now only need to remember one password, and I can get to everything.
As for the remote chance that the email provider will cease to exist,
I made backup accounts with other major providers, because paranoia.

I don't use email apps to access my password storage account; and I
use Tor to get to it for the sake of anonymity. I'd be fairly
impressed if someone got through that level of security, and it's
probably overkill, but why take the risk?

While I'm at it... does everyone know about

https://haveibeenpwned.com

You can put your email address in there, and see if it's been involved
in any large-scale thefts. It's got records going back years, and I
was fairly shocked to see that my wife's account had been hacked years
ago.
--
Cheers,
Dreamer
AA 2306

"The fact that a believer is happier than a skeptic is no
more to the point than the fact that a drunken man is
happier than a sober one. The happiness of credulity is a
cheap and dangerous quality of happiness, and by no means
a necessity of life."

George Bernard Shaw
Androcles and the Lion

On Mon, 12 Jul 2021 09:53:00 +0000
I use Pass, which is a command-line only password manager using git and
gpg. It's good and lightweight.

I used KeePassX 0.4.4 works up to OS X 10.11 and then, after some
testing, settled to KeePassXC.

I use the same .kdbx file at work with a KeePass Windows standalone
version and it works great.

I have advocated KeePass to the rest of the family and some use it and
some don't preferring the iCloud keychain which also seems to work OK
with less hassle.

On Jul 12, 2021 at 1:53:00 AM PDT, "Unbreakable Disease"
I have the older version (non-subscription) of 1Password, but also make use of
the keychain password manager and the manager built-in to Safari (I use Safari
on both the mac and the ipad/iphone).

Only lately, when I'm offered a complex "strong password" of jibberish, I take
it. That's working well too.

But I also use a variation on the same password: I selected two capitalized
words (for instance ArchBasket with a few numbers, 245, then the first two
letters of the intended website, for instance AMazon. Then I use this same
password everywhere, with the exception of those last two letters.
ArchBasket245am, for Powell's books: ArchBasket245po.

It's easy to remember.

On Jul 12, 2021 at 1:53:00 AM PDT, "Unbreakable Disease"
I'm really glad this topic came up. I'm sorting through the drek of old
users/passwords in Safari's stash, and Firefox's and 1Password v6 which I now
realize hasn't been working in Safari, but has in Firefox. It's a total mess.
I think I'll spend a few days trying to sort it out...