WEBVTT

00:00:00.240 --> 00:00:08.800
so password security i mean we all know that password abcd or 69 all day are

00:00:06.480 --> 00:00:11.280
really terrible passwords we know that you shouldn't reuse passwords across

00:00:10.160 --> 00:00:16.000
multiple sites we know that you shouldn't write down your password yet

00:00:13.840 --> 00:00:19.520
many people do these things every day today we'll discuss the ramifications of

00:00:17.840 --> 00:00:23.199
bad password habits and give you some best practices to incorporate into your

00:00:21.359 --> 00:00:27.119
personal security routine and on the subject of privacy give the like button

00:00:25.119 --> 00:00:31.279
a click if you'd like to see a video on the best ways to hide your important

00:00:28.880 --> 00:00:37.320
pictures and video that you like to look at by yourself at night or with friends

00:00:34.239 --> 00:00:44.000
i don't judge

00:00:44.000 --> 00:00:50.160
logitech g303 features a lightweight design and advanced optical sensor with

00:00:48.239 --> 00:00:54.000
delta zero technology for precise tracking and RGB lighting to match your

00:00:52.480 --> 00:00:58.399
setup click the link in the video description to learn more

00:00:56.239 --> 00:01:02.079
so i don't want to fear monger but i do want to open with a few realistic

00:01:00.160 --> 00:01:06.320
scenarios that could occur if your passwords were broken into or leaked or

00:01:04.080 --> 00:01:10.640
whatever even ignoring the obviously horrible stuff like what if someone had

00:01:08.479 --> 00:01:15.200
access to your online banking account strap in it's about to get a little

00:01:12.720 --> 00:01:19.119
freaky first off facebook or something like facebook maybe it doesn't seem like

00:01:17.200 --> 00:01:23.600
that big of a deal sure i mean maybe they'll see that you're the admin of the

00:01:20.960 --> 00:01:28.000
combined fan groups of both narwhals and five gallon buckets but nothing can

00:01:25.840 --> 00:01:32.240
really go wrong here right wrong not only can they glean more

00:01:30.320 --> 00:01:35.920
information very easily like your phone number but they can also change your

00:01:34.000 --> 00:01:40.479
privacy settings opening up your account to the world doesn't sound that bad okay

00:01:38.240 --> 00:01:43.920
let's take it up a notch the intruder could glean information from your

00:01:42.159 --> 00:01:48.720
friends either by just having closer access to their pages or by using social

00:01:46.240 --> 00:01:53.520
engineering practices like simply asking them things so effectively your own

00:01:51.439 --> 00:01:58.960
failures can compromise the privacy of your friends and family not cool and

00:01:56.720 --> 00:02:02.399
that's ignoring that an especially malicious attacker could ruin

00:02:00.479 --> 00:02:06.240
friendships or people's perception of you by posting things on your wall that

00:02:04.320 --> 00:02:09.920
are highly inappropriate or asking things of people that wouldn't be

00:02:07.759 --> 00:02:14.800
appropriate so now let's do scenario number two losing your email this is

00:02:12.560 --> 00:02:18.640
actually one of the worst things that can happen not because someone might

00:02:16.879 --> 00:02:22.959
read the love letter you wrote in high school but because your email is usually

00:02:20.800 --> 00:02:27.840
used as a password and even username recovery mechanism for your other

00:02:25.520 --> 00:02:31.920
accounts poor email security is basically like handing an intruder the

00:02:29.599 --> 00:02:36.720
master key to your online identity which brings into play another aspect identity

00:02:34.560 --> 00:02:40.959
theft by having access to a few of your accounts especially your email it can

00:02:39.040 --> 00:02:44.640
actually be pretty damn easy to steal someone else's identity once that

00:02:42.959 --> 00:02:49.120
happens registering new credit cards getting healthcare on their dime or your

00:02:46.720 --> 00:02:51.680
dime or even registering their bridge or highway tolls under your name or their

00:02:50.959 --> 00:02:56.080
name is relatively all easily possible so we

00:02:54.319 --> 00:02:59.200
all agree that password security is important and yes some things are

00:02:57.440 --> 00:03:03.680
somewhat out of your hands like website security and whatnot but what can you do

00:03:01.519 --> 00:03:07.680
to help protect your own accounts well you can protect against hacking attempts

00:03:05.440 --> 00:03:12.080
with some fairly simple things never store them in plain text on your

00:03:09.680 --> 00:03:17.120
computers never write them down never use your real name username birthday

00:03:15.120 --> 00:03:21.840
phone number or any other easily identifiable information in your

00:03:19.040 --> 00:03:27.280
password never use an easy keyboard combination like abcd qwerty or qazed

00:03:25.599 --> 00:03:32.000
and there are some other good tips too be careful with the answers to security

00:03:30.319 --> 00:03:35.920
questions if you don't feel like any of them are strong enough use an unrelated

00:03:33.920 --> 00:03:40.640
answer that you know you can remember and if you have to send your password to

00:03:38.080 --> 00:03:44.799
someone for some probably terrible reason in plain text online try

00:03:43.120 --> 00:03:50.959
splitting it up across a few different mediums never reuse a password but

00:03:48.319 --> 00:03:54.720
especially for your email many people are guilty of using passwords including

00:03:52.640 --> 00:04:00.000
myself in the past but please at the very least use the unique and strong

00:03:56.879 --> 00:04:01.760
password for your email and finally use

00:04:00.000 --> 00:04:05.280
two-factor authentication wherever possible you can learn more about it

00:04:03.599 --> 00:04:09.360
here but basically with two-factor authentication you can have security

00:04:07.280 --> 00:04:13.200
code sent to your mobile device or email in order to double check that it's

00:04:10.879 --> 00:04:17.199
actually you trying to log in this can really help against things like key

00:04:14.879 --> 00:04:22.160
loggers skimming your passwords as these codes are one-time use i would highly

00:04:20.160 --> 00:04:26.080
recommend two-factor authentication even if you ignore all of my other

00:04:23.759 --> 00:04:29.360
suggestions that i've made please listen to this one

00:04:27.120 --> 00:04:33.360
moving on now to create a good password is actually rather simple and if you'd

00:04:31.520 --> 00:04:38.080
like to see a great infographic on it look up xkcd password strength in that

00:04:36.240 --> 00:04:42.400
infographic it has stated that and i quote through 20 years of effort we've

00:04:40.800 --> 00:04:46.960
successfully trained everyone to use passwords that are hard for humans to

00:04:44.240 --> 00:04:50.080
remember but easy for computers to guess end quote

00:04:48.160 --> 00:04:54.479
i completely and wholeheartedly agree with this stop using short but insanely

00:04:52.400 --> 00:04:58.240
complicated passwords and start using long and more simple ones that you can

00:04:56.080 --> 00:05:01.600
actually remember this will help you to not write them down or store them

00:04:59.680 --> 00:05:06.240
somewhere and makes them actually a lot harder to break a trick i use is

00:05:04.240 --> 00:05:11.520
describing something in my environment for instance this is a long skinny white

00:05:09.520 --> 00:05:16.240
tube but that happens to have tape on it so i could make my password long skinny

00:05:13.919 --> 00:05:20.639
white tube tape and it would actually be a pretty secure as long as i don't break

00:05:18.960 --> 00:05:24.320
any of the other rules as well but this really isn't enough there's still a huge

00:05:22.479 --> 00:05:27.680
amount of unique and long passwords to remember so you might be inclined to

00:05:26.240 --> 00:05:32.880
tell your browser to remember your password for a certain website don't do

00:05:30.160 --> 00:05:38.160
that chrome's passwords are encrypted based on your Windows login password the

00:05:35.120 --> 00:05:39.280
security of which is iffy at best

00:05:38.160 --> 00:05:44.479
considering there's a few ways to decipher them quite easily and firefox's

00:05:41.919 --> 00:05:47.919
passwords are normally very easily accessible unless you set your own

00:05:45.840 --> 00:05:52.240
master password which for whatever reason it doesn't prompt you to do at

00:05:50.160 --> 00:05:55.600
this time so how do you remember them all well i would recommend using a

00:05:53.600 --> 00:06:00.800
third-party password manager for cloud-based options you have lastpass

00:05:58.080 --> 00:06:06.880
dashlane and one password amongst others and for local storage options you have

00:06:02.960 --> 00:06:09.120
keepass roboform and password safe again

00:06:06.880 --> 00:06:12.880
amongst others there are positives and negatives to each of these solutions but

00:06:10.960 --> 00:06:16.400
that may be for another video at another time a different route than these would

00:06:14.560 --> 00:06:20.080
be if you would like to use truekey from Intel a new password security system

00:06:18.319 --> 00:06:23.759
based around using your fingerprint or your facial recognition

00:06:21.840 --> 00:06:27.840
as encryption utilities again there's positives and negatives to that as well

00:06:25.919 --> 00:06:32.800
and the last but not least option is a physical security key like yubikey from

00:06:30.400 --> 00:06:37.199
yubico this is a token that's trusted by everyone from google to facebook to the

00:06:35.120 --> 00:06:41.120
freaking united states department of defense and that can provide an

00:06:39.440 --> 00:06:45.440
additional factor of authentication against anything from your Windows login

00:06:43.280 --> 00:06:49.360
to your email to your password manager itself so you'll never really have to

00:06:47.120 --> 00:06:52.960
worry about some jackass intruders netflix suggestions and ratings invading

00:06:51.360 --> 00:06:56.080
your chill time next time you want to log in

00:06:54.560 --> 00:07:01.440
massdrop has another one of their pretty killer deals going on today the lg 34 uc

00:06:59.759 --> 00:07:06.800
87m-b is currently available for a whopping

00:07:03.240 --> 00:07:11.039
250 dollars off of msrp this is a

00:07:06.800 --> 00:07:13.199
34-inch 3440 by 1440p ultrawide 21 by

00:07:11.039 --> 00:07:16.319
nine inch monitor of course this product is only available through massdrop at

00:07:14.720 --> 00:07:19.840
this significantly discounted price thanks to their group by model

00:07:18.400 --> 00:07:23.840
essentially the more people that buy the more the price goes down to a set

00:07:21.759 --> 00:07:27.120
minimum which this monitor is already at you you can check out this drop and many

00:07:25.599 --> 00:07:31.919
others and link in the video description which is dro dot ps Linus tech tips so

00:07:29.919 --> 00:07:34.639
head over there now if you're interested that link doesn't really give us a

00:07:33.120 --> 00:07:38.080
kickback or anything but it does let them know that we sent you

00:07:36.720 --> 00:07:42.720
thanks for watching guys if this video sucked do you know what to do but if it was awesome get subscribed hit the like

00:07:41.120 --> 00:07:47.919
button or even consider supporting us directly by using our amazon affiliate

00:07:45.120 --> 00:07:52.160
code to shop on well amazon buy a cool t-shirt that probably isn't from bastian

00:07:50.400 --> 00:07:55.199
or with a direct monthly contribution through the forum now that you're done

00:07:53.520 --> 00:07:58.160
doing all that stuff you're probably wondering what to watch next so click

00:07:56.560 --> 00:08:05.080
the little button in the top right hand corner to check out NVIDIA's new full

00:08:00.319 --> 00:08:05.080
desktop grade 980 in a laptop