1
Is it a bad security practice to use the same passphrase (assume strong, diceware-esque) for your ssh keys and your password manager master password?
Aspiring Dev
Posted 2017-03-12T02:59:06.483
Reputation: 159
Is bad security practice to use the same passphrase for your ssh keys and your password manager master password?
Answers
1
Stephen Rauch
Posted 2017-03-12T02:59:06.483
Reputation: 2 455
That may be a funny comic, but please can you extract the relevant information and provide a proper answer? – DavidPostill – 2017-03-12T09:15:22.660
Outdated (Google is already evil ;) and it doesn't really apply here. I specifically describe the limited reuse scenario and it doesn't involve the use of the passphrase on any kind of webservice. – Aspiring Dev – 2017-03-12T13:02:13.090
It really depends on how secure you want to be. Personally I'd use and suggest a unique master password. – Kevin – 2017-03-12T05:23:14.227
2From a security perspective, its never a good idea to re-use anything. – vishnu narayanan – 2017-03-12T05:24:24.387
@vishnunarayanan I'm aware of that but I've seen many people that are storing their password managers to keep their ssh passphrases. Is that scenario any more secure than just using the same passphrase on both the passwd manager and your ssh keys? – Aspiring Dev – 2017-03-12T13:04:38.127