How many passwords do you have for work?

I managed 92 different sites. Each one has a different administrator account and service account...
 
First job - An A4 sheet pretty much full.

Next job - many text files in a file store.
Next job - many, many text files in a file store.

Current job, 100's but mostly all in one place, a password manager.
That we are getting all of them into atm :P
 
One for active directory, various others for servers, a couple of encryption keys... nothing out of the ordinary. All memorised at work. Personal passwords are all KeePassed.
 
My main work one is easy enough but I have 20-30 character passwords for website backends, email accounts etc. which are all stored on an encrypted Truecrypt partition with a KeePass database stored on it.
 
One.

I only use my work PC for emails and brosing here though, I'm an engineer so never have to worry about computers.
 
35 personal, about 20 shared for the team on client system side and about 5 on my corporate system - stored in Outlook and cyphered.
 
Last edited:
One. AD integration FTW.

(That is lie, have a few local passwords memorised and there is *still* the odd system that doesn't do AD integration. :( )
 
Not including random 4-digit codes to get into various keysafes and the odd 6 digit door lock (which all use the same code).

Just my login password.
 
1 for my PC - changes every 30 days :mad:
I have to use an RSA token for remote log in + password
1 for sharepoint access
1 for holiday requests

That's pretty much it I think.
 
I have about 15, all of them for different applications. It's so retarded. What's even more annoying is that some passwords expire at different durations depending on the system. So my log on password is currently ending in 14, another online password is at about 7, and most are still on 1 or 2. My system is pretty good i.e. I have a system. Most people either write them all in a big book or just click the "forgot my password" every time. The only problem is if someone discovers one of my passwords, it's not hard to figure out what the rest would be.
 
I have to use an RSA token for remote log in + password

I forgot about RSA tokens, I've got two of them too :p

Can't use a password manager either as its spread across 4 unique networks.

For those of you with 100's of passwords, I presume your in support? What actually the point of so many?
 
For daily logins - 3 AD accounts, VPN1 with fob, VPN2 without fob.

The 3 AD accounts are out of sync on their renew cycle. And when I'm forced to change passwords, various RDP sessions start locking my accounts and it takes a couple of days to get back to normal. I love it.
 
Last edited:
For those of you with 100's of passwords, I presume your in support? What actually the point of so many?

When I've seen password-mania, it usually arises when workstations, servers, software, etc. aren't connected, or aren't properly connected, to a directory service. So you have two options: use one password for everything, but when you need to change it (eg. expiry or security breach) you have to change it in all of those different locations; or use different passwords for everything, which is harder to remember but means that the passwords can be expired/changed/etc. individually.
 
Not many at all :p.

  1. My own user account
  2. Domain admin password
  3. Remote server password
  4. The misc password that gets used for not so secure things
  5. UNIX root user (live)
  6. UNIX root user (testing)
  7. Building alarm code
  8. Building security door codes
 
I forgot about RSA tokens, I've got two of them too :p

Can't use a password manager either as its spread across 4 unique networks.

For those of you with 100's of passwords, I presume your in support? What actually the point of so many?

Public sector. They appear to have procured many bespoke systems over many years and each has its own login. To me it makes sense to consolidate them or use publicly available alternatives but I imagine the answer to that now would be "don't have the budget".

We do have a local password manager but it only works for certain intranet applications on IE. We have Chrome but add-ons are blocked so no Lastpass :rolleyes:
 
Back
Top Bottom