some services like Microsoft offer passwordless accounts. Some are starting to offer passkeys

Then you have much bigger problems beyond just credential stuffing. However most password managers make this EXTREMELY difficult, and difficult to use if ever captured. For example, if your password manager itself supports 2FA, enabling that makes this close to a non-issue.

@@askleonotenboom Thanks Leo

No, it's not recommended.

Not OK. While 2FA helps, it's still a dangerous practice.

@@askleonotenboom I watch all your help and sometimes don't see the logic in it. How would phone oriented 2 factor authenticating fail? Seems that someone would have to hack your phone, which would be quite difficult. You say it is a dangerous practice. Exactly what is the danger in it?

@@glasslinger 1. Would you only use this same password with accounts with 2FA activated, or also with accounts where 2FA is not possible? - Then those latter accounts wouldn't be secure at all... 2. What form of 2FA are we even talking about? SMS, E-Mail, push-app, TOTP, Security Key, ...? They are not evenly secure... and mostly not 100% secure. And if your password is leaked and everywhere the same, your "2FA" would be reduced to "1FA" then, so to speak...

@@glasslinger Two factor can be bypassed in real time with a man-in-the-middle attack. askleo.com/two-factor-hack/

I respectfully and strongly disagree. askleo.com/are_password_managers_safe/

@@askleonotenboom Yes, they're safe - until they aren't. Nope, sorry. I've seen too many dustups where people lost a bunch of info which had been assured safe. I keep a notepad with my passwords and I write them down. Unless someone is specifically going to come to my house and root around trying to find it, that's where they stay. No internet setup is safer than simply not being there at all.

Two articles for you: askleo.com/are_password_managers_safe/ askleo.com/lose-access-to-my-password-vault/

@@askleonotenboom Thanks again Leo. I'll read them both and try to gain some confidence. JimE

If you use the same password on every site, it is not important whether the password is strong or weak - if your password get's leaked, it's leaked... and can be used on your every site

@@unmapped89361 yes i know but strong passwords is a must to to may ppl use weak ones hope that helps

Must be cold, it looks like a thermal jacket.

Two videos: an accident. No video Friday to make up for it. :-) That's a light zippered sweatshirt. Sometimes it can be a little chilly.

@@askleonotenboom No video Friday? But today is Friday...and there's a new vid!

@@askleonotenboom Pace yourself Leo, you might run out of topics/issues to discuss. lol.