Wow! I've actually been trying to come up with a secure, but easy-for-me-to-remember password scheme.
What I wanted to build was a password generator which takes a username and domain as inputs and spits out an pseudo-random passsword.
Something like: bgraves & ycombinator.com & salt = ybcgormabviensator#salt
The problem for me is that I use very hard to guess passwords, generated by my password database program (KeePass). Now I have no idea what those PW's are and rely solely on KeePass to keep track, which isn't available on my workplace PC (and, no, syncing my password DB between environments is not permitted.)
This site maybe what I was looking for, and it even looks like it's in JS to prevent most MitM attacks!
Provided that the code is intact when you initially retrieve it, that solves the MITM issue. But then you're tied to that computer, and if that's acceptable, then you're far better off just using a password-keeper that uses real crypto.
What I wanted to build was a password generator which takes a username and domain as inputs and spits out an pseudo-random passsword.
Something like: bgraves & ycombinator.com & salt = ybcgormabviensator#salt
The problem for me is that I use very hard to guess passwords, generated by my password database program (KeePass). Now I have no idea what those PW's are and rely solely on KeePass to keep track, which isn't available on my workplace PC (and, no, syncing my password DB between environments is not permitted.)
This site maybe what I was looking for, and it even looks like it's in JS to prevent most MitM attacks!
Thanks HN!!