15

u/Myrmec Mar 08 '16

I just have this nightmare of permanently being locked out of absolutely everything.

3

u/TokyoJokeyo Mar 08 '16

You can use a key file so you don't have to remember the password, just what file you used.

4

u/meepsi Mar 08 '16

Its best to use both, not just the file.

3

u/TokyoJokeyo Mar 08 '16

Sure, but that doesn't protect against forgetting the password--I'd say you can surely remember one password, but if you're really worried, a local database protected with a keyfile is still a lot better than just reusing really bad passwords everywhere.

1

u/meepsi Mar 08 '16

Better because it requires someone to be on your machine or have access to the keyfile and the DB. But if someone has access to the DB, they probably have access to the keyfile too, which makes it practically useless.

In order for the keyfile only approach to work, you would need to keep it on a flash drive and never use it on an unknown machine.

The much better solution is to use a pass-phrase in combination with a keyfile. If you are worried about forgetting the pass-phrase you could always have the keyfile represent a reminder. Like a text file which has the filename of a hint (to remind you of the pass-phrase). Or have the keyfile be an MP3 of a song and the pass-phrase be a lyric of the same song.