Quantum proof

Neither did my laptop, desktop, or phone. I use Linux and GrapheneOS

GrapheneOS is a significantly more complicated and less accessible option for most users compared to a simple paper notebook, which is the context of this post.

But if you want to go this deep, then yes, maybe your phone using your custom OS never introduced Gemini or Copilot without your will. It is however running a Qualcomm modem firmware you can't control and is phoning home, regardless of your GrapheneOS settings, with your GPS coordinates and other data you can't read, at any time. Don't worry, with tech we can always find a malicious feature that works against the user, regardless of how deep you want to dive.

As long as the notebook is in a locked draw I would pass this on an IT Audit.

Correct horse battery staple

xkcd.com/2176

I should get this for my dad, he recently got a new computer at best buy and the geek squad told him his files were all in the cloud and sent him home. Guess who got a call the next day because "all my passwords are in a word document in some fucking cloud". Yeah that was a fun day spent setting up his computer while listening to his rant about the geek squad and "the fucking cloud".... thanks geek squad....

Huh, what for? And if i would, maybe i should switch to pass (which is the same but in fancy and with plugins). I'm planning for years now to set up a little server i've built already...

That’s exactly what I use. Chances of my house getting robbed is small. Chances of yet another data breach is very high - this year my data was breached at least 2ce that I remember.

"For most things"? Like written notes are whatever, if you don't mind carrying it around with you everywhere you go and hoping it doesn't rain. But definitely do not put your passwords in there....

Modern password managers are super inexpensive, easy to use, and essential security tools. You can't store your passkeys or TOTP in your notebook either.

Keeepass, simple and easy to use!
https://keepassxc.org/

* for the tech inclined

Managing sync between mobile and desktop is a bit more complicated than average consumers have the patience for (it’s really not very complicated, average consumers are just impatient)

The main weakness it has is from a nosey flatmate, spouse, or child in the house.

Watch out for that home grown script kiddie

if you don’t mind carrying it around with you everywhere

I doubt the target demographic for a paper password notebook is logging into their accounts everywhere, as if that's some common occurrence.

and hoping it doesn’t rain

Ah yes, famously, before the invention of laptops universities and schools didn't work on every single rainy day, because paper notebooks and books are impossible to keep dry. As a matter of fact, the UK never had an educational system before the digital age for this very reason, it's so sad.

You can’t store your passkeys or TOTP in your notebook either.

You shouldn't store 2FA and recovery codes on your password manager. They offer the feature as a competitive selling point, but the entire point of having 2FA is avoiding single point of failures.

For the majority of my clients who use this kind of system, it is totally dysfunctional.

Most of the records are incorrect, my guess is that they occasionally reset the password on mobile while the book is inaccessible and then don’t remember to update it in the book later.

Effective use relies on the user’s understanding of umbrella accounts. I’ve had users have separate written entries for “Office”, “Skype”, “Hotmail”, and “Windows” because they don’t understand those things are all one Microsoft Account.

As passwords get updated, it can become a mess of crossed out records with new ones squished into the margins. When a someone dies, anything written illegibly can be difficult for surviving family to discern.
As the book gets filled out, it can get tricky to keep things alphabetized unless the user provisioned additional empty space between records.

This system can work great for someone who is meticulous, neat, and organized.

For your average person, I’ve had better luck solving the problem with a password manager synced to an online account that is protected by MFA and has recovery options that are also protected by MFA.

paper notebooks and books are impossible to keep dry

Not impossible but shit happens. Used to happen to me all the time. I used to walk/bike everywhere.

but the entire point of having 2FA is avoiding single point of failures.

Your password manager is not usually the point of failure, it's almost always the provider.

You're not wrong, I just can't be arsed to manage 2 separate password managers.

You're not wrong either, I just think we are talking about two very different kinds of user here, and they have different levels of challenge and convenience to balance. I'm not even talking about myself: I moved everything to analog, but not my password manager - I use a password manager like yourself, a 2FA app and a physical USB key.

And very power efficient

Especially when helping your parents living in the middle of nowhere.

Seeing them struggle with the changes happening in the last few decades, makes me worry what I'll be like when i need some young whippersnapper so that I can pay via personal, irrational, conditional thinking.

Unfortunately it's a combination lock, and the code is written on a post-it stuck on the front of the drawer.

I dropped my book and now debt collectors are after me. 0/5 would not recommend.