I was gonna go down the exact same path using bitwarden randomly generated passphrase and store in bitwarden, and after a very long contemplation, i ended up using my secondary master password for my super important account instead, fingers crossed.
i donāt know if that makes me feel better knowing itās not TrueNasās issue. I was really afraid because I just ingested 80TB of fresh data and all encrypted using passphrase LOL.
It generally makes me feel better to have an explanation that makes sense. That way I can take steps to avoid this in the future.
1 Like
This is for a group of people, so we kind of needed something with the ability to share passwords that multiple people needed to know. Bitwarden is open source, has had a security audit, and the cost was reasonable. Knowing now that the password history feature may not always work kind of sucks, but I didnāt even know that was a feature until recently. So not the end of the world.
Backup encryption passkeys 3:2:1, Just like the data.
In all seriousness print them out and file them.
In my passkey tracker thing I actually keep a secure note, because Iāve been bitten by their propensity to replace passwords/keys.
And itās the same reason I donāt use dataset encryption. I figure the only person whoās getting locked out is me.
Given that nothing really needs encryption that we use, I will probably not be encrypting things going forward. If the need comes up I will make a special dataset just for that. I will also be keeping the passphrases in a second location going forward, if I end up needing to do that.
1 Like
Hate to ārub it inā, but was this a randomly generated passphrase, or was it one of your own cognition?
Because all passphrases I use, I memorize. (I donāt really need a password manager, but itās nice to have.)
Iām against āsuper secure randomly generated passphrasesā, since they do not have personal meaning to you. Hence, you need to rely on a password manager or auto-fill.
Hereās an example of what one of my passwords might be:
Alice dove through the rabbit hole 13 times!
I easily memorize that and can type it in as if Iām writing a normal sentence, but itās a very strong passphrase. (Iām not bound to a password manager, since the passphrase was my own creation with personal meaning.)
1 Like
I believe it was a sentence, as that is how I normally do it. I should have memorized it, but I did not. I have to store it somewhere as other people may need access to it, since this is used for a team not just me.
This solves everything:
zfs create mypool/the-password-for-this-encrypted-dataset-is_IHave22PetRabbitsInMyHouse
3 Likes
When you use the app (donāt know how it is displayed in the web GUI) you can click on the number of the password history to see the older passwords.
2 Likes