We use several accounts on different websites every day, so a password manager is essential!
Unfortunately, there are still many users nowadays who use passwords like “qwertz” “1234567890” or “P855W0R7”. Many do not know: the easier it is to remember a password, the easier it is to hack it.
So that you remain in control of your accounts and your passwords, you can get useful tools such as the password manager Enpass. In this post I will explain to you how to configure the password manager correctly and why you should leave out the cloud sync function.
Please note: The language on the screenshots is in German. This does not change the position of the elements.
01. Choose the right password manager
Sun Knudsen, a data protection professional, likes 1Password, I like Enpass. 1Password is not open source, so one has to hope for the goodwill of the developers. Enpass, on the other hand, has an open source approach and anyone can view the tool’s code. This makes it more difficult for developers to install unsafe or even complete gateways.
02. Create master password
So after we – in this case – have downloaded and installed Enpass (these instructions are universally applicable to iOS, iPad-OS, MacOS, Windows, Android and Linux!), Enpass asks us for a master password when creating a new safe.
The master password should consist of a set of 6 words that are not in the dictionary and are completely made up. This makes it harder for hackers to decrypt the data right from the start.
In the quick setup we set that Enpass is opened automatically when Windows, Linux or MacOS is started. We can deactivate all other boxes and controls in the QuickSetup:
04. Off in to the settings!
In the settings we now have to make a few changes so that we can use Enpass as our new password manager without hesitation.
To do this, select the gear in the upper right corner, on the smartphone you will find the settings on the lower right edge.
05. Change security settings
By default, Enpass is set so that you only have to enter the master password once per Windows session. But that is far too unsafe, especially when you are in the office or have many visitors at home. That’s why we set the “Security” tab as shown in the picture:
06. Browser settings
Enpass can also be used in Firefox, Safari, Edge and Google Chrome with a browser extension. However, I advise against using the autofill function, as hackers can insert hidden form fields into websites in order to get your login data.
That is why I deactivated the autofill function in the following picture and configured Enpass so that it does not automatically log you in after inserting the form data on a website:
07. Safe your account logins
If you have followed all the steps above, you can finally enter your account data in the password manager. Enpass supports you by telling you whether you are using a secure password and reminding you to set a new password at regular intervals.
Enpass also offers an option to synchronize the vault via cloud providers such as OneDrive, iCloud or GoogleDrive. I advise against that, however, because there’s a rule here: There is no cloud, only someone else’s PC. As soon as your safe leaves the local network, it is more vulnerable than just on your PC. Prefer to synchronize your safes with a USB stick.
If you don’t use a password manager in 2020, you deserve to be hacked in my opinion, because setting up a password manager is neither difficult nor time-consuming.
This tutorial can be worked through in 10 to 15 minutes and you are then safe for an extremely long time. All you have to do from now on is entering your account data reliable.
I hope that these instructions will encourage many people to become aware of your security situation on the Internet, because: Without a password manager, with the same password used over several websites, you simply have no security from hackers and you don’t have to be surprised if your Facebook Account is gone, private and intimate photos appear on the Internet and friends turn away because someone is spreading nonsense about your own account.
Did you enjoy this post? Please leave me a reaction so that I know if I should write more such posts in the future.
Picture © Daniel Wenzlik