{"video_id":"t8SQo3R7qeU","title":"Password Security Best Practices","channel":"Linus Tech Tips","show":"Linus Tech Tips","published_at":"2016-05-06T14:53:29Z","duration_s":484,"segments":[{"start_s":0.24,"end_s":8.8,"text":"so password security i mean we all know that password abcd or 69 all day are","speaker":null,"is_sponsor":0},{"start_s":6.48,"end_s":11.28,"text":"really terrible passwords we know that you shouldn't reuse passwords across","speaker":null,"is_sponsor":0},{"start_s":10.16,"end_s":16.0,"text":"multiple sites we know that you shouldn't write down your password yet","speaker":null,"is_sponsor":0},{"start_s":13.84,"end_s":19.52,"text":"many people do these things every day today we'll discuss the ramifications of","speaker":null,"is_sponsor":0},{"start_s":17.84,"end_s":23.199,"text":"bad password habits and give you some best practices to incorporate into your","speaker":null,"is_sponsor":0},{"start_s":21.359,"end_s":27.119,"text":"personal security routine and on the subject of privacy give the like button","speaker":null,"is_sponsor":0},{"start_s":25.119,"end_s":31.279,"text":"a click if you'd like to see a video on the best ways to hide your important","speaker":null,"is_sponsor":0},{"start_s":28.88,"end_s":37.32,"text":"pictures and video that you like to look at by yourself at night or with friends","speaker":null,"is_sponsor":0},{"start_s":34.239,"end_s":44.0,"text":"i don't judge","speaker":null,"is_sponsor":0},{"start_s":44.0,"end_s":50.16,"text":"logitech g303 features a lightweight design and advanced optical sensor with","speaker":null,"is_sponsor":0},{"start_s":48.239,"end_s":54.0,"text":"delta zero technology for precise tracking and RGB lighting to match your","speaker":null,"is_sponsor":0},{"start_s":52.48,"end_s":58.399,"text":"setup click the link in the video description to learn more","speaker":null,"is_sponsor":0},{"start_s":56.239,"end_s":62.079,"text":"so i don't want to fear monger but i do want to open with a few realistic","speaker":null,"is_sponsor":0},{"start_s":60.16,"end_s":66.32,"text":"scenarios that could occur if your passwords were broken into or leaked or","speaker":null,"is_sponsor":0},{"start_s":64.08,"end_s":70.64,"text":"whatever even ignoring the obviously horrible stuff like what if someone had","speaker":null,"is_sponsor":0},{"start_s":68.479,"end_s":75.2,"text":"access to your online banking account strap in it's about to get a little","speaker":null,"is_sponsor":0},{"start_s":72.72,"end_s":79.119,"text":"freaky first off facebook or something like facebook maybe it doesn't seem like","speaker":null,"is_sponsor":0},{"start_s":77.2,"end_s":83.6,"text":"that big of a deal sure i mean maybe they'll see that you're the admin of the","speaker":null,"is_sponsor":0},{"start_s":80.96,"end_s":88.0,"text":"combined fan groups of both narwhals and five gallon buckets but nothing can","speaker":null,"is_sponsor":0},{"start_s":85.84,"end_s":92.24,"text":"really go wrong here right wrong not only can they glean more","speaker":null,"is_sponsor":0},{"start_s":90.32,"end_s":95.92,"text":"information very easily like your phone number but they can also change your","speaker":null,"is_sponsor":0},{"start_s":94.0,"end_s":100.479,"text":"privacy settings opening up your account to the world doesn't sound that bad okay","speaker":null,"is_sponsor":0},{"start_s":98.24,"end_s":103.92,"text":"let's take it up a notch the intruder could glean information from your","speaker":null,"is_sponsor":0},{"start_s":102.159,"end_s":108.72,"text":"friends either by just having closer access to their pages or by using social","speaker":null,"is_sponsor":0},{"start_s":106.24,"end_s":113.52,"text":"engineering practices like simply asking them things so effectively your own","speaker":null,"is_sponsor":0},{"start_s":111.439,"end_s":118.96,"text":"failures can compromise the privacy of your friends and family not cool and","speaker":null,"is_sponsor":0},{"start_s":116.72,"end_s":122.399,"text":"that's ignoring that an especially malicious attacker could ruin","speaker":null,"is_sponsor":0},{"start_s":120.479,"end_s":126.24,"text":"friendships or people's perception of you by posting things on your wall that","speaker":null,"is_sponsor":0},{"start_s":124.32,"end_s":129.92,"text":"are highly inappropriate or asking things of people that wouldn't be","speaker":null,"is_sponsor":0},{"start_s":127.759,"end_s":134.8,"text":"appropriate so now let's do scenario number two losing your email this is","speaker":null,"is_sponsor":0},{"start_s":132.56,"end_s":138.64,"text":"actually one of the worst things that can happen not because someone might","speaker":null,"is_sponsor":0},{"start_s":136.879,"end_s":142.959,"text":"read the love letter you wrote in high school but because your email is usually","speaker":null,"is_sponsor":0},{"start_s":140.8,"end_s":147.84,"text":"used as a password and even username recovery mechanism for your other","speaker":null,"is_sponsor":0},{"start_s":145.52,"end_s":151.92,"text":"accounts poor email security is basically like handing an intruder the","speaker":null,"is_sponsor":0},{"start_s":149.599,"end_s":156.72,"text":"master key to your online identity which brings into play another aspect identity","speaker":null,"is_sponsor":0},{"start_s":154.56,"end_s":160.959,"text":"theft by having access to a few of your accounts especially your email it can","speaker":null,"is_sponsor":0},{"start_s":159.04,"end_s":164.64,"text":"actually be pretty damn easy to steal someone else's identity once that","speaker":null,"is_sponsor":0},{"start_s":162.959,"end_s":169.12,"text":"happens registering new credit cards getting healthcare on their dime or your","speaker":null,"is_sponsor":0},{"start_s":166.72,"end_s":171.68,"text":"dime or even registering their bridge or highway tolls under your name or their","speaker":null,"is_sponsor":0},{"start_s":170.959,"end_s":176.08,"text":"name is relatively all easily possible so we","speaker":null,"is_sponsor":0},{"start_s":174.319,"end_s":179.2,"text":"all agree that password security is important and yes some things are","speaker":null,"is_sponsor":0},{"start_s":177.44,"end_s":183.68,"text":"somewhat out of your hands like website security and whatnot but what can you do","speaker":null,"is_sponsor":0},{"start_s":181.519,"end_s":187.68,"text":"to help protect your own accounts well you can protect against hacking attempts","speaker":null,"is_sponsor":0},{"start_s":185.44,"end_s":192.08,"text":"with some fairly simple things never store them in plain text on your","speaker":null,"is_sponsor":0},{"start_s":189.68,"end_s":197.12,"text":"computers never write them down never use your real name username birthday","speaker":null,"is_sponsor":0},{"start_s":195.12,"end_s":201.84,"text":"phone number or any other easily identifiable information in your","speaker":null,"is_sponsor":0},{"start_s":199.04,"end_s":207.28,"text":"password never use an easy keyboard combination like abcd qwerty or qazed","speaker":null,"is_sponsor":0},{"start_s":205.599,"end_s":212.0,"text":"and there are some other good tips too be careful with the answers to security","speaker":null,"is_sponsor":0},{"start_s":210.319,"end_s":215.92,"text":"questions if you don't feel like any of them are strong enough use an unrelated","speaker":null,"is_sponsor":0},{"start_s":213.92,"end_s":220.64,"text":"answer that you know you can remember and if you have to send your password to","speaker":null,"is_sponsor":0},{"start_s":218.08,"end_s":224.799,"text":"someone for some probably terrible reason in plain text online try","speaker":null,"is_sponsor":0},{"start_s":223.12,"end_s":230.959,"text":"splitting it up across a few different mediums never reuse a password but","speaker":null,"is_sponsor":0},{"start_s":228.319,"end_s":234.72,"text":"especially for your email many people are guilty of using passwords including","speaker":null,"is_sponsor":0},{"start_s":232.64,"end_s":240.0,"text":"myself in the past but please at the very least use the unique and strong","speaker":null,"is_sponsor":0},{"start_s":236.879,"end_s":241.76,"text":"password for your email and finally use","speaker":null,"is_sponsor":0},{"start_s":240.0,"end_s":245.28,"text":"two-factor authentication wherever possible you can learn more about it","speaker":null,"is_sponsor":0},{"start_s":243.599,"end_s":249.36,"text":"here but basically with two-factor authentication you can have security","speaker":null,"is_sponsor":0},{"start_s":247.28,"end_s":253.2,"text":"code sent to your mobile device or email in order to double check that it's","speaker":null,"is_sponsor":0},{"start_s":250.879,"end_s":257.199,"text":"actually you trying to log in this can really help against things like key","speaker":null,"is_sponsor":0},{"start_s":254.879,"end_s":262.16,"text":"loggers skimming your passwords as these codes are one-time use i would highly","speaker":null,"is_sponsor":0},{"start_s":260.16,"end_s":266.08,"text":"recommend two-factor authentication even if you ignore all of my other","speaker":null,"is_sponsor":0},{"start_s":263.759,"end_s":269.36,"text":"suggestions that i've made please listen to this one","speaker":null,"is_sponsor":0},{"start_s":267.12,"end_s":273.36,"text":"moving on now to create a good password is actually rather simple and if you'd","speaker":null,"is_sponsor":0},{"start_s":271.52,"end_s":278.08,"text":"like to see a great infographic on it look up xkcd password strength in that","speaker":null,"is_sponsor":0},{"start_s":276.24,"end_s":282.4,"text":"infographic it has stated that and i quote through 20 years of effort we've","speaker":null,"is_sponsor":0},{"start_s":280.8,"end_s":286.96,"text":"successfully trained everyone to use passwords that are hard for humans to","speaker":null,"is_sponsor":0},{"start_s":284.24,"end_s":290.08,"text":"remember but easy for computers to guess end quote","speaker":null,"is_sponsor":0},{"start_s":288.16,"end_s":294.479,"text":"i completely and wholeheartedly agree with this stop using short but insanely","speaker":null,"is_sponsor":0},{"start_s":292.4,"end_s":298.24,"text":"complicated passwords and start using long and more simple ones that you can","speaker":null,"is_sponsor":0},{"start_s":296.08,"end_s":301.6,"text":"actually remember this will help you to not write them down or store them","speaker":null,"is_sponsor":0},{"start_s":299.68,"end_s":306.24,"text":"somewhere and makes them actually a lot harder to break a trick i use is","speaker":null,"is_sponsor":0},{"start_s":304.24,"end_s":311.52,"text":"describing something in my environment for instance this is a long skinny white","speaker":null,"is_sponsor":0},{"start_s":309.52,"end_s":316.24,"text":"tube but that happens to have tape on it so i could make my password long skinny","speaker":null,"is_sponsor":0},{"start_s":313.919,"end_s":320.639,"text":"white tube tape and it would actually be a pretty secure as long as i don't break","speaker":null,"is_sponsor":0},{"start_s":318.96,"end_s":324.32,"text":"any of the other rules as well but this really isn't enough there's still a huge","speaker":null,"is_sponsor":0},{"start_s":322.479,"end_s":327.68,"text":"amount of unique and long passwords to remember so you might be inclined to","speaker":null,"is_sponsor":0},{"start_s":326.24,"end_s":332.88,"text":"tell your browser to remember your password for a certain website don't do","speaker":null,"is_sponsor":0},{"start_s":330.16,"end_s":338.16,"text":"that chrome's passwords are encrypted based on your Windows login password the","speaker":null,"is_sponsor":0},{"start_s":335.12,"end_s":339.28,"text":"security of which is iffy at best","speaker":null,"is_sponsor":0},{"start_s":338.16,"end_s":344.479,"text":"considering there's a few ways to decipher them quite easily and firefox's","speaker":null,"is_sponsor":0},{"start_s":341.919,"end_s":347.919,"text":"passwords are normally very easily accessible unless you set your own","speaker":null,"is_sponsor":0},{"start_s":345.84,"end_s":352.24,"text":"master password which for whatever reason it doesn't prompt you to do at","speaker":null,"is_sponsor":0},{"start_s":350.16,"end_s":355.6,"text":"this time so how do you remember them all well i would recommend using a","speaker":null,"is_sponsor":0},{"start_s":353.6,"end_s":360.8,"text":"third-party password manager for cloud-based options you have lastpass","speaker":null,"is_sponsor":0},{"start_s":358.08,"end_s":366.88,"text":"dashlane and one password amongst others and for local storage options you have","speaker":null,"is_sponsor":0},{"start_s":362.96,"end_s":369.12,"text":"keepass roboform and password safe again","speaker":null,"is_sponsor":0},{"start_s":366.88,"end_s":372.88,"text":"amongst others there are positives and negatives to each of these solutions but","speaker":null,"is_sponsor":0},{"start_s":370.96,"end_s":376.4,"text":"that may be for another video at another time a different route than these would","speaker":null,"is_sponsor":0},{"start_s":374.56,"end_s":380.08,"text":"be if you would like to use truekey from Intel a new password security system","speaker":null,"is_sponsor":0},{"start_s":378.319,"end_s":383.759,"text":"based around using your fingerprint or your facial recognition","speaker":null,"is_sponsor":0},{"start_s":381.84,"end_s":387.84,"text":"as encryption utilities again there's positives and negatives to that as well","speaker":null,"is_sponsor":0},{"start_s":385.919,"end_s":392.8,"text":"and the last but not least option is a physical security key like yubikey from","speaker":null,"is_sponsor":0},{"start_s":390.4,"end_s":397.199,"text":"yubico this is a token that's trusted by everyone from google to facebook to the","speaker":null,"is_sponsor":0},{"start_s":395.12,"end_s":401.12,"text":"freaking united states department of defense and that can provide an","speaker":null,"is_sponsor":0},{"start_s":399.44,"end_s":405.44,"text":"additional factor of authentication against anything from your Windows login","speaker":null,"is_sponsor":0},{"start_s":403.28,"end_s":409.36,"text":"to your email to your password manager itself so you'll never really have to","speaker":null,"is_sponsor":0},{"start_s":407.12,"end_s":412.96,"text":"worry about some jackass intruders netflix suggestions and ratings invading","speaker":null,"is_sponsor":0},{"start_s":411.36,"end_s":416.08,"text":"your chill time next time you want to log in","speaker":null,"is_sponsor":0},{"start_s":414.56,"end_s":421.44,"text":"massdrop has another one of their pretty killer deals going on today the lg 34 uc","speaker":null,"is_sponsor":0},{"start_s":419.759,"end_s":426.8,"text":"87m-b is currently available for a whopping","speaker":null,"is_sponsor":0},{"start_s":423.24,"end_s":431.039,"text":"250 dollars off of msrp this is a","speaker":null,"is_sponsor":0},{"start_s":426.8,"end_s":433.199,"text":"34-inch 3440 by 1440p ultrawide 21 by","speaker":null,"is_sponsor":0},{"start_s":431.039,"end_s":436.319,"text":"nine inch monitor of course this product is only available through massdrop at","speaker":null,"is_sponsor":0},{"start_s":434.72,"end_s":439.84,"text":"this significantly discounted price thanks to their group by model","speaker":null,"is_sponsor":0},{"start_s":438.4,"end_s":443.84,"text":"essentially the more people that buy the more the price goes down to a set","speaker":null,"is_sponsor":0},{"start_s":441.759,"end_s":447.12,"text":"minimum which this monitor is already at you you can check out this drop and many","speaker":null,"is_sponsor":0},{"start_s":445.599,"end_s":451.919,"text":"others and link in the video description which is dro dot ps Linus tech tips so","speaker":null,"is_sponsor":0},{"start_s":449.919,"end_s":454.639,"text":"head over there now if you're interested that link doesn't really give us a","speaker":null,"is_sponsor":0},{"start_s":453.12,"end_s":458.08,"text":"kickback or anything but it does let them know that we sent you","speaker":null,"is_sponsor":0},{"start_s":456.72,"end_s":462.72,"text":"thanks for watching guys if this video sucked do you know what to do but if it was awesome get subscribed hit the like","speaker":null,"is_sponsor":0},{"start_s":461.12,"end_s":467.919,"text":"button or even consider supporting us directly by using our amazon affiliate","speaker":null,"is_sponsor":0},{"start_s":465.12,"end_s":472.16,"text":"code to shop on well amazon buy a cool t-shirt that probably isn't from bastian","speaker":null,"is_sponsor":0},{"start_s":470.4,"end_s":475.199,"text":"or with a direct monthly contribution through the forum now that you're done","speaker":null,"is_sponsor":0},{"start_s":473.52,"end_s":478.16,"text":"doing all that stuff you're probably wondering what to watch next so click","speaker":null,"is_sponsor":0},{"start_s":476.56,"end_s":485.08,"text":"the little button in the top right hand corner to check out NVIDIA's new full","speaker":null,"is_sponsor":0},{"start_s":480.319,"end_s":485.08,"text":"desktop grade 980 in a laptop","speaker":null,"is_sponsor":0}],"full_text":"so password security i mean we all know that password abcd or 69 all day are really terrible passwords we know that you shouldn't reuse passwords across multiple sites we know that you shouldn't write down your password yet many people do these things every day today we'll discuss the ramifications of bad password habits and give you some best practices to incorporate into your personal security routine and on the subject of privacy give the like button a click if you'd like to see a video on the best ways to hide your important pictures and video that you like to look at by yourself at night or with friends i don't judge logitech g303 features a lightweight design and advanced optical sensor with delta zero technology for precise tracking and RGB lighting to match your setup click the link in the video description to learn more so i don't want to fear monger but i do want to open with a few realistic scenarios that could occur if your passwords were broken into or leaked or whatever even ignoring the obviously horrible stuff like what if someone had access to your online banking account strap in it's about to get a little freaky first off facebook or something like facebook maybe it doesn't seem like that big of a deal sure i mean maybe they'll see that you're the admin of the combined fan groups of both narwhals and five gallon buckets but nothing can really go wrong here right wrong not only can they glean more information very easily like your phone number but they can also change your privacy settings opening up your account to the world doesn't sound that bad okay let's take it up a notch the intruder could glean information from your friends either by just having closer access to their pages or by using social engineering practices like simply asking them things so effectively your own failures can compromise the privacy of your friends and family not cool and that's ignoring that an especially malicious attacker could ruin friendships or people's perception of you by posting things on your wall that are highly inappropriate or asking things of people that wouldn't be appropriate so now let's do scenario number two losing your email this is actually one of the worst things that can happen not because someone might read the love letter you wrote in high school but because your email is usually used as a password and even username recovery mechanism for your other accounts poor email security is basically like handing an intruder the master key to your online identity which brings into play another aspect identity theft by having access to a few of your accounts especially your email it can actually be pretty damn easy to steal someone else's identity once that happens registering new credit cards getting healthcare on their dime or your dime or even registering their bridge or highway tolls under your name or their name is relatively all easily possible so we all agree that password security is important and yes some things are somewhat out of your hands like website security and whatnot but what can you do to help protect your own accounts well you can protect against hacking attempts with some fairly simple things never store them in plain text on your computers never write them down never use your real name username birthday phone number or any other easily identifiable information in your password never use an easy keyboard combination like abcd qwerty or qazed and there are some other good tips too be careful with the answers to security questions if you don't feel like any of them are strong enough use an unrelated answer that you know you can remember and if you have to send your password to someone for some probably terrible reason in plain text online try splitting it up across a few different mediums never reuse a password but especially for your email many people are guilty of using passwords including myself in the past but please at the very least use the unique and strong password for your email and finally use two-factor authentication wherever possible you can learn more about it here but basically with two-factor authentication you can have security code sent to your mobile device or email in order to double check that it's actually you trying to log in this can really help against things like key loggers skimming your passwords as these codes are one-time use i would highly recommend two-factor authentication even if you ignore all of my other suggestions that i've made please listen to this one moving on now to create a good password is actually rather simple and if you'd like to see a great infographic on it look up xkcd password strength in that infographic it has stated that and i quote through 20 years of effort we've successfully trained everyone to use passwords that are hard for humans to remember but easy for computers to guess end quote i completely and wholeheartedly agree with this stop using short but insanely complicated passwords and start using long and more simple ones that you can actually remember this will help you to not write them down or store them somewhere and makes them actually a lot harder to break a trick i use is describing something in my environment for instance this is a long skinny white tube but that happens to have tape on it so i could make my password long skinny white tube tape and it would actually be a pretty secure as long as i don't break any of the other rules as well but this really isn't enough there's still a huge amount of unique and long passwords to remember so you might be inclined to tell your browser to remember your password for a certain website don't do that chrome's passwords are encrypted based on your Windows login password the security of which is iffy at best considering there's a few ways to decipher them quite easily and firefox's passwords are normally very easily accessible unless you set your own master password which for whatever reason it doesn't prompt you to do at this time so how do you remember them all well i would recommend using a third-party password manager for cloud-based options you have lastpass dashlane and one password amongst others and for local storage options you have keepass roboform and password safe again amongst others there are positives and negatives to each of these solutions but that may be for another video at another time a different route than these would be if you would like to use truekey from Intel a new password security system based around using your fingerprint or your facial recognition as encryption utilities again there's positives and negatives to that as well and the last but not least option is a physical security key like yubikey from yubico this is a token that's trusted by everyone from google to facebook to the freaking united states department of defense and that can provide an additional factor of authentication against anything from your Windows login to your email to your password manager itself so you'll never really have to worry about some jackass intruders netflix suggestions and ratings invading your chill time next time you want to log in massdrop has another one of their pretty killer deals going on today the lg 34 uc 87m-b is currently available for a whopping 250 dollars off of msrp this is a 34-inch 3440 by 1440p ultrawide 21 by nine inch monitor of course this product is only available through massdrop at this significantly discounted price thanks to their group by model essentially the more people that buy the more the price goes down to a set minimum which this monitor is already at you you can check out this drop and many others and link in the video description which is dro dot ps Linus tech tips so head over there now if you're interested that link doesn't really give us a kickback or anything but it does let them know that we sent you thanks for watching guys if this video sucked do you know what to do but if it was awesome get subscribed hit the like button or even consider supporting us directly by using our amazon affiliate code to shop on well amazon buy a cool t-shirt that probably isn't from bastian or with a direct monthly contribution through the forum now that you're done doing all that stuff you're probably wondering what to watch next so click the little button in the top right hand corner to check out NVIDIA's new full desktop grade 980 in a laptop"}