Episode 7: Password Managers
Duration: ~9 minutes | Format: Practical
Episode Summary
Most people use the same password—or a minor variation of it—across dozens of accounts. Their email, their bank, their social media, all protected by “Fluffy2019!” with a few symbols thrown in. When one database gets breached, and databases get breached constantly, attackers don’t get one account. They get the keys to everything.
This is where the toolkit begins. If you do nothing else after listening to this podcast, do this one thing.
- The problem: Password reuse, credential stuffing, and why “P@ssword123” isn’t clever
- What a password manager is: A secure vault that remembers everything so you remember one master passphrase
- KeePassXC: The local-first, sovereignty-minded option—your passwords on your hardware
- Bitwarden: The open-source, cloud-synced option with zero-knowledge encryption
- The verdict on 1Password and LastPass
- A five-step setup walkthrough plus the two-factor bonus
Key Quotes
“When one database gets breached—and databases get breached constantly—attackers don’t just get one account. They get the keys to everything.”
“Your ‘P@ssword123’ isn’t clever. It’s predictable.”
“KeePassXC is perfect for the sovereignty-minded. Your passwords live on your hardware, encrypted with your key. Nobody else has access.”
The Takeaway
Set up a password manager today. Pick one—Bitwarden if you want open source and easy sync, KeePassXC if you want maximum control. Choose a strong master passphrase of four or more random words, write it down somewhere physically secure, and start with your most important accounts: email, banking, anything with two-factor. Let it generate new random passwords, then migrate the rest gradually over the coming weeks. Consistency beats speed.
Learn More
Start here: Privacy 101 Week 4: Password Managers
Transcript
Coming soon