Is this a bad thing? My passwords are saved on my Mac.
1 Like
You gotta add something here. Even if you keep signing out of sessions, the hacker can keep spamming your Roblosecurity and they’ll be able to keep getting in. What you need to do is quickly sign out of sessions and then change your password. When you change your password, your Roblosecurity is invalidated so it won’t work anymore.
1 Like
Really really bad advice, use a secure password manager (not your browser).
iCloud keychain is safe, you should be fine, but if you wanna be extra safe, use a password manager such as keepass (No idea if thats on mac)
How secure is your Mac? Best to be safe. Although iCloud keychain is safe, if it gets hacked then gg. That’s why I recommended the “brain” storage method instead.
1 Like
For those who are serious about security, I strongly recommend giving a read on this topic instead:
This post is unfortunately misleading.
3 Likes
no, sign out of all sessions works by invalidating all roblosecurities and making a new one
1 Like
i think password managers can be hacked easier than brains
NEVER trust online password managers, NEVER. Use something permanent like a piece of paper or a note to store your passwords on it and remember to hide it.
1 Like
That sounds a bit dramatic. I use LastPass, and I’m fine.
Not possible, I was being hacked live in March of this year. The hacker started to sell all my limiteds for cheap prices and I keep signing out of sessions. But he kept coming back in. Only when I changed my password, the roblosecurity he got stopped working.
It’s not vulnerable by my actions, meaning I never do stupid stuff on my Mac and make it vulnerable.
An online password manager is okay, but they’re not permanent. If you store your passwords on a cloud, you can lose your password for some time due to outage or even breach. If you store your passwords locally, you can lose them due to viruses on your PC. It’s better to keep them where you’ll not lose them.
1 Like
Ah, okay. Maybe I should start writing down passwords and keep them safe. 
1 Like
sigh
Please, before telling people not to use password manages, explain why.
Here are some starter issues with not using password manages, whether they’re online or not:
- Memorizing/writing down all of your passwords for all of your websites
- If your memory fails, or you forgot where you wrote your passwords, you can’t access your accounts
- Authorizing yourself to get access to the passwords; when you have written down your passwords, you don’t have a log of who accessed them. You can keep them in a safe, but it’s easier to crack into a physical safe than it is to crack your encrypted passwords with the key only you know, by an algorithm security experts have created.
- It takes time to write down your new passwords, and type them into forms instead of just selecting the field & pasting.
- Recommended practice is to change passwords for your accounts at least once every year
- If any of your emails/passwords are detected and found pwned, you should update your credentials ASAP. This is extremely unintuitive to do without a password manager that automatically checks and alerts you, you have to do this manully.
- Password management becomes a hell, and are you really more secure by doing it physically?
4 Likes
No worries, I’m going to be using password managers and writing passwords down together, but I do agree with your point though.
That just complicates things, stick to a system that’s secure and doesn’t require as much effort. And also consider your attack surface before considering switching to anything new.
Writing passwords down at your home protects you basically from anyone on the internet, but what about family members, siblings and others? If you tell me you store your passwords in a physically safe safe, with a code only you know, and that you always put the passwords in there, sure, feel free to do that, but if not, you’re just letting passwords lie where you reside.
If you’re worried about losing access to your accounts, there are tons of things to do to backup your secrets. Do regular dumps and backups to other independent vendors or to local USBs/HDDs, but don’t go as far as writing your passwords down on physical paper because “cloud bad, paper best”.
That makes sense. I agree with all that.
But what if I lock my papers in a 5 foot thick steel vault 7 miles underground? With a bomb that goes off when someone touches the paper?
2 Likes
Oh, lol. Security goes on the cost of convenience, so if you have the time to go to that vault every time you want to log in, then I have nothing to say.
But, if you want to be basically just as secure, start using password managers and do backups.
1 Like
Thanks for your reply.
I have a few concerns:
Is it something bad to memorize and write down your passwords?
You don’t need to keep your note on a different side of the house.
Why should you keep something in a safe? Especially a note with your passwords. You can hide it in a place like under a bedsheet.
It doesn’t take 3 hours to write down a password (for me).
Again, that doesn’t change that you need to use a password manager for that.
You can use a password manager for your work accounts. If you have many passwords, I give you a point for that.
Yes I am. I’m not scared of losing them.
I gave a reason here:
Hope you’re doing well.