Best option for non techies at home.

Yeah, It's actually quite a secure way to store passwords, since it requires physical access.

I knew a guy who had a drawer full of slips of paper with passwords written on. He called it the "security drawer". Made me smile, but probably shouldn't have been advertising it.

I've not found anything better. Storing on my computer, or worse someone else's computer, doesn't seem safe.

The trick is to use code language, and don't forget the code. Then you can use digital sources more freely, I feel.

Ah yes, the keep ass

Does anyone else know how to get into the safe?

My ex kept her's in an unprotected excel file. I never peeked, I was just surprised when I saw her accessing it on her laptop.

Honestly, a physical password book isn't a bad idea.

Not accessible via the internet, and in most cases if someone has physical access to your system you're done for anyway.

The main weakness it has is from a nosey flatmate, spouse, or child in the house.

It's pretty safe. Competent password managers will be heavily encrypted. Having your passwords hacked is essentially unheard of. You don't have to worry about it being on someone else's computer as without your master password the password file is useless.

I think the biggest case was LastPass, and they did it by getting a keylogger onto a developers PC to get at their password, but afaik customer passwords were safe unless your master password was weak or reused from a breached one.

But, a notebook isn't hackable at all. But then the people around you could potentially get into it, which is a far more likely threat for a ton of people.

Either way use 2FA at every site that will allow it.

How do you syncronize it between multiple devices and operating systems?

All the effort of inputting data into a password manager, but none of the security.

One master password to rule them all, One server to find them, One password to bring them all, and in the darkness bind them.

Yeah I use 2FA with the master notebook.

I'm not in their target audience.

Don't forget to use diceware. The human mind is not random enough https://www.eff.org/dice

Oh yeah, this is for my in-laws. This is peak boomer tech right here.

Their Ring camera that points directly at the desk they keep this notebook on: "it's showtime"

Yeah, my in-laws have such a book and it honestly is great. They live in their own flat where nobody can access the book without breaking in. They do not save their passwords in their browser, so anyone hacking into their PC can't grab them. If they want to login into an account, they take out their book, put in the user name and unique password and that's it. Quite the good method and I really do not see many problems there.

Yep. My Dad in his late 70s uses this system and it works great for him.

People make fun of it, but for people with low tech literacy this is actually far better than having a mish-mash of solutions where some their logins end up automatically saved in iOS on their phone, some are saved in Chrome on the desktop, some are just in their head, they don't know where anything is, and are constantly losing access and resetting credentials all the time.

And it definitely reduces the burden on me of parental tech support, when its all in the book.

My Mum died recently and my step dad is shit with tech, so their password book was invaluable in helping us gain access to her Apple account and her phone. It meant we were able to get to her iCloud passwords, so now we have access to everything.

So yeah, password books are actually pretty handy.

What this book likely doesn't suggest, is to just code the username.

I have 2FA backup codes in my go bag and nowhere do I write the usernames or even the service if it's important.

You know your email address. If you lose this in an airport, writing "main email" makes it useless to anyone else.