Best recommendation I can use for passwords is a non dictionary word, upper and lower case letters, mixed in with symbols and numbers. Oh, and at least 12 characters. Use something like http://passwordsgenerator.net/ for that.
For safeguarding files (on a website), utilize htaccess and htpasswd to protect those (not 100% secure, but still very solid, especially if passwords follow the recommendation above).
Douglas Hazard - Certifiable Sports Junkie and Sports Community Enthusiast
Host of Two Cents Radio - Follow @TwoCentsRadio on Twitter (@BearlyDoug on Twitter)
Are you really wanting to store password files on a web server? Doesn't sound like a sensible thing to do.
How valuable is the data the password secures? What sort of access is needed? Daily? Yearly?
Increasing security -> Increasing costs
If it's the password to a collection of lolcat images I'd say a post-it note on your desk, hidden under a chocolate bar.
If it contains information you don't want the NSA to access then a physically secure server in a 24 hour secured & monitored location with a fully encrypted drive, tamper proof memory and air-gapped from any network. Have armed security too.
You're probably looking for something in between those two.
‡ David Man ‡www.openitc.co.uk - We create, we host, we connect - Fully Managed VPS & Dedicated Hosting ‡www.direvps.com - When nothing but price matters! - Brutal marketing for a brutal market!
Not unless you can remember dozens of 12+ character long completely random passwords...
I'd suggest an encrypted password database on your own computer(s). You've got no reason to rely on poor passwords, or use the same one on multiple sites. The only thing you have to remember is your master password. Mine is quite long, and generated using a system called diceware.
I'm using 1Password, but there are other good and free choices.
A dictionary word is no bueno, nor are short passwords.
You do not need to use a combination of confusing and hard to remember upper and lower case characters with symbols and numbers. Sure, it wouldn't hurt, but length is a key factor, not necessarily a jumbled array of characters.
Phrases are very secure, for example:
You can further spice phrases up with numbers, etc. if you so desire.
Last edited by Jay H; 10-02-2013 at 11:36 AM.
Reason: more info
*GeekStorage.com, LLC - Offering awesome website hosting for over 9 years! * Shared Hosting * Reseller Hosting * Pure SSD VPS * Managed Dedicated *Powered by Geeks... and SSD's! - You're in good hands, geek hands. * Have questions? Send us an e-mail, we'd love to hear from you!