HOW TO MANAGE PASSWORDS
As best practices go, the rules for creating passwords are simple: Use a random combination of numbers, symbols, and mixedcase letters; never reuse passwords; turn on two-factor authentication if it’s available. The most important rule of all is use a password manager.
ONE: Browser Integration:
Most password managers include browser extensions that automatically save credentials when you create a new account or sign in using those credentials for the first time. That browser integration also allows you to automatically enter credentials when you visit a matching website.
TWO: Password Generation:
Every password manager worth its salted hash includes a password generator capable of instantly producing a truly random, never-before-used-by-you password. If you don’t like that password, you can click to generate another.
THREE: Phishing Protection:
Integrating a password manager with a browser is superb protection against phishing sites. Your password manager won’t enter your saved credentials, because the URL of the fake site doesn’t match the legitimate domain associated with them.
FOUR: Cross Platform Access:
Password managers work across devices, including PCs, Macs, and mobile devices, with the option to sync your encrypted password database to the cloud.
FIVE: Surveillance Safeguard:
Password managers generally offer good protection against “shoulder surfing”. An attacker who’s able to watch you type, either live or with the help of a surveillance camera, can steal your login credentials with ease. Password managers never expose those details.