Security 101 – Passwords for the Web

In the past few weeks, I’ve come to realize 2 things.  First, the collegiate football (American) offseason is somewhat boring…bring on the SEASON!  Second, people’s Gmail accounts are getting hacked….a lot.  I’ve seen 2 of my friends have their accounts hacked in the past month and a half.

While there is nothing I can do about the first one, there is something I can do about the second.

I figured it might be a good idea to share how I generate passwords for web resources like Gmail and any other web based service.  I can do this in ANY browser…Opera, Chromium, and Firefox…and any operating system; because I use a tool called LastPass.

LastPass is a password vault for your browser.  It can remember any password you type on the web and it can also fill out forms for you (if you’d like).  I’ve been using it for about years now but have only recently taken advantage of their handy tools to generate passwords.  I’m going to walk you through setting it up in Firefox and generating passwords.  Hopefully, this will inspire you to change your password to something a little more complex to thwart hackers.

First of course, install the add-on/extension.  This process will differ depending on your browser.  Once LastPass is installed, make sure you sign up for an account or sign in to your existing one.  Remember, LastPass allows you to use a master password to keep a lock on your entire array of of websites you visit.  It takes security a step further by way of password generation.

Password Generation

You already have passwords for email, Facebook, Twitter, and other places on the web.  Is your password complex enough to thwart hackers attempts to crack it?  Most likely the answer is no…and if that’s the case, it would be a great idea to change your passwords to randomly generated ones and use last pass to remember it.  Imagine your password being the following:

hank65yankees

With LastPass it can become

S&Wllj98oCDFZ*

Which one seems harder for hackers to figure out to you?  So let’s get started.  During the installation for LastPass it should have told you how to access the menu…either through a standard menu or perhaps a button.  Once you access the LastPass menu, look for ‘tools’ and then choose ‘Generate Secure Password’.

This should bring up the LastPass password generation tool.  It will look something like this:

LastPass Password GeneratorAs you can see, the generator is ready to randomly generate more passwords for you by clicking the ‘generate’ button and you can copy it to your clipboard with the ‘copy’ button.  However, 8 digit passwords (default setting) may not be good enough for you.  In that case, click the ‘Show Advanced Options’ toggle.  This will bring up the following options:

Advanced Options

As you can see, you can increase the number of digits for password length…I’ve increased mine to 14 characters…and you can increase the Minimum Digit Count.  I’ve done so and moved it up to 2 digits.  Customize it however you like and once you have it set the way you like it, you can click ‘close’.  The options will save for the next time you go to generate a password.

Changing the Password

Now it’s time for us to actually change a password.  How do we do this?  Well, if you already had a LastPass account, you can visit your password vault and search for the site you would like to change.  Once you find it, you can open up the password generator and generate a new password…then edit the site inside your password vault and paste the new password.  Your job isn’t over yet though as you need to go to the actual site and change the password there as well.

If you haven’t used LastPass before, just visit the site you would like to change the password at and login.  LastPass will detect that you’re logging in and will ask if you want to remember the site you just logged in to.  You should select ‘save site’.

After you’ve logged in, go to whatever password change link the site provides and go ahead and change the password using the LastPass password generation tool pictured above.  LastPass should detect that you’re changing the password and ask if you want to update the site.  Remember, you can always manually edit the password inside the LastPass Vault.

Why Generate Passwords

I’ve shown this process to people I work with in Information Technology and they scoff at this idea of having randomly generated passwords.  They often say ‘how will I remember the randomly generated password?’ and that’s the beauty of LastPass.  It remembers so you don’t have to.  Once I tell them this, they generally move onto the question ‘well, what do I do if LastPass isn’t installed on the computer I’m using?’ and once again, the solution is LastPass.  Just head over to www.lastpass.com and login using your account details.  You’ll be redirected to your online password vault.  You’ll be able to fully manage everything as if you were using the extension in your browser.  You’ll also be able to copy and paste passwords by clicking ‘edit’ on the sites and ‘show’ beside the password field.  Sure it’s a bit more work…but it’s also quite a bit more secure.

Don’t put your trust in things you think are difficult for hackers to guess…chances are, it isn’t that hard for them to do so…allow LastPass to randomly generate them for you.  That way, you’ll never have your email account hacked like my friends did these past few months…unless you really do want to support the sale of pharmaceuticals or would like to enhance certain appendages.  I hope this helps you to use secure passwords in the future!  If you have questions, please let me know in the comments and I’ll do my best to answer them!  Thanks for reading!

Mozilla Firefox, From Darling to Enemy in One Release

FirefoxWhat is wrong with everyone in Linux land bagging on Mozilla Firefox and their 5.0 release?

Complaints pretty much have one thing in common:  They claim there isn’t enough ‘new and shiny’ things inside FF5 to warrant a major version.  This is illogical thinking because major version means NOTHING when it comes to usability of software.  I’ve noticed that I can browse and use FF5 just as easily as I could FF4 and FF3 before it…I still type in URL’s and websites display.  My plugins all still work.  It starts up a bit faster and websites seem to load just a bit faster…which is good.  So why all the whining and complaining?

The silliest thing about this is that the same people complaining about Firefox 5 say that Chrome and IE are going to overtake it and that this is the beginning of the end for Mozilla and Firefox.  Poppycock!  Chrome and Chromium have been using Agile programming and the SAME EXACT METHODOLOGY BEHIND releases and version numbers that Firefox is doing now.  So where was the flack for Google and Chromium when they released often and incremented all the way up to version 10 and then version 12??

It is my opinion that the people shouting from the rooftops that Mozilla and Firefox are a sinking ship doomed to fail while using Chrome/Chromium in the background have no clue what Agile Programming (or in Google’s case, Agile-like programming) is or what it sets out to accomplish…and they’re showing how hypocritical they are.  If you’re one of these people, where were you when Chrome and Chromium was ratcheting up their version numbers without noticeable improvements and features?

Sad that Firefox and Mozilla, who championed one of the first fantastic browsers on Linux, has went from Linux Darling to Public Enemy Number One in a single release in some peoples eyes.  Hopefully, people will realize how silly it is and stop complaining?  Well, one can dream right?

Let’s look at the quality of the software when levelling complaints instead of being upset that the version number doesn’t jive with what we think it should.  Thus far, my experience with FF5 has been pretty darn fantastic.  Thanks go out to Mozilla…you’ve done a great iteration of software yet again.

Force Firefox to Remember Initial Window Setting in KDE

I have a laptop with the resolution of 1440×900…so when I installed the latest TR6 from PCLinuxOS, I was dismayed to find out that when launching Firefox, it opened up in a window that was 1024 pixels. Of course, I maximized this and then closed it thinking that Firefox would remember my settings. The problem is…it didn’t remember my settings.

When I opened Firefox up again, it popped up to say hello once again at 1024 pixels.  Sure, you can right click on the Firefox window bar and drill down into application specific settings via KDE (yes, it’s that configurable) but I didn’t want to have to do this…because if I did, ALL Firefox windows would open up maximized…and that includes any pop-ups as well.  I also know that you can drill down even further to fix THAT problem.  However, it should ‘just work’ right?  You shouldn’t have to change anything at all correct?  Well, I’ve found a fix that is pretty easy to accomplish…and I hope it helps the hundreds of people I found when searching through google on this.

Open up Firefox and it will open at the smaller screen size…in my case, it opened up 1024 px in width on my 1440px screen.  Then, hover over the top right hand corner with your mouse until you get the resize arrow.  Resize the window click dragging it to the top, right hand corner of the screen.  It should ‘snap-in’ once you get close to maximized size.  Now close the window, and open Firefox again.  It should open up fully maximized.

I sure hope this saves someone time…because I spent the better part of a morning trying to fix this.

Creative Commons License
Except where otherwise noted, the content on this site is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.