-
Notifications
You must be signed in to change notification settings - Fork 0
/
index.xml
350 lines (335 loc) · 37.4 KB
/
index.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
<channel>
<title>Giorgio Camozzi</title>
<link>https://grgcmz.github.io/</link>
<description>Recent content on Giorgio Camozzi</description>
<generator>Hugo -- gohugo.io</generator>
<language>en-us</language>
<lastBuildDate>Sat, 20 Nov 2021 10:15:38 +0100</lastBuildDate><atom:link href="https://grgcmz.github.io/index.xml" rel="self" type="application/rss+xml" />
<item>
<title>My Personal Tech Setup for 2021/2022</title>
<link>https://grgcmz.github.io/posts/personal-tech/</link>
<pubDate>Sat, 20 Nov 2021 10:15:38 +0100</pubDate>
<guid>https://grgcmz.github.io/posts/personal-tech/</guid>
<description><p>I always enjoy reading about what other people use on a day to day basis. I think it&rsquo;s entertaining but also interesting to see and sometimes provides a good learning opportunity. In this short article I will go into all the computers, peripherals and software I use on a daily basis and tell you my opinion about them.</p>
<h1 id="laptops">
Laptops
<a class="heading-link" href="#laptops">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h1>
<p>As I am always working in different places, moving between lectures, work and coffee shops, I do not own a desktop computer. I do all of my work on a laptop (actually, many laptops because I really like switching around). Here is a list of my main machines.</p>
<h3 id="thinkpad-t14-gen-1">
Thinkpad T14 Gen 1
<a class="heading-link" href="#thinkpad-t14-gen-1">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>My main machine is a <a href="https://www.lenovo.com/us/en/p/laptops/thinkpad/thinkpadt/thinkpad-t14-amd-g1/22tpt14t4a2" target="_blank" rel="noreferrer noopener">Thinkpad T14 Gen 1 AMD</a>
. It has 32GB of RAM, a 1TB NVMe SSD, an 8 core AMD Ryzen chip and a 1080p screen. It has all the ports you would ever need in this day and age and the battery life is good. I have never tried Windows on this laptop, so I cannot attest to how well it works with it. On Linux, I have not had any problems really. Everything, including the fingerprint reader, microphone, camera and touchpad, worked out of the box. I am currently running <a href="https://getfedora.org/" target="_blank" rel="noreferrer noopener">Fedora 34</a>
on it, which might just be my favorite distro I have ever used. It is smooth, stable and polished. The touchpad gestures work well, it has a great release cycle and software is usually up to date. I am really happy with it and am not really missing something (besides photo and video editing software, which I am going to come to later). The only thing I really do not like about this laptop is the touchpad. It is awful. I used to be a mac user, so I have had a taste of the fancy fancy, but I have also tried an XPS 13 running Fedora 34 and the touchpad was so much better. It is not too much of a problem for me as I usually have my mouse with me everywhere anyway, but it is still an important thing to note.</p>
<figure><img src="https://grgcmz.github.io/img/02_tech/image_1.jpg"
alt="Thinkpad T14 Gen 1, Kinesis Advantage 2 and Logitech MX Ergo" width="1000"/><figcaption>
<p>Thinkpad T14 Gen 1, Kinesis Advantage 2 and Logitech MX Ergo</p>
</figcaption>
</figure>
<h3 id="macbook-pro-15-inch-mid-2015">
MacBook Pro 15 inch, Mid 2015
<a class="heading-link" href="#macbook-pro-15-inch-mid-2015">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>I used to be a Mac user before switching to Linux about two years ago. This MacBook Pro is a great machine. The hardware is top notch, it has many ports, it is quite powerful for a 2015 laptop and still works great to this day. I am running it with the latest macOS Monterey and I am a bit of a sucker for the user interface to be honest. The reason why I have this laptop is that I am also a photographer and sometimes make videos. There are options on Linux such as <a href="https://www.rawtherapee.com/" target="_blank" rel="noreferrer noopener">RawTherapee</a>
and <a href="https://www.darktable.org/" target="_blank" rel="noreferrer noopener">Darktable</a>
for photo editing, and <a href="https://kdenlive.org/en/" target="_blank" rel="noreferrer noopener">Kdenlive</a>
for video editing. But coming from the Adobe suite of products, it is really hard to get along with these programs. They may be great if you are used to them, but I often feel very limited when using them. For video editing, there exists <a href="https://www.blackmagicdesign.com/products/davinciresolve/" target="_blank" rel="noreferrer noopener">Davinci Resolve</a>
which also has a Linux version (horay!), but sadly, for now, it does not work on AMD discrete graphics.</p>
<h3 id="thinkpad-x230">
Thinkpad X230
<a class="heading-link" href="#thinkpad-x230">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>The <a href="https://www.blackmagicdesign.com/products/davinciresolve/" target="_blank" rel="noreferrer noopener">Thinkpad X230</a>
is the newest addition to my collection of laptops. I bought it used for CHF 150. It came with 8GB of RAM, which I then upgraded to 16GB, an Intel i5-3220 CPU, 128GB of SATA III SSD storage (which I will upgrade as well) and the much nicer IPS panel (rather than the TN panel). It has a swedish keyboard, which I actually find quite cool, though I have it set to a US layout. I am planning on modding this laptop to use the <a href="https://www.thinkwiki.org/wiki/Install_Classic_Keyboard_on_xx30_Series_ThinkPads" target="_blank" rel="noreferrer noopener">X220 classic keyboard</a>
once I find an original one that does not cost as much as the laptop itself. I bought this laptop for three main reasons. The first one is the fact that it is just a really cool laptop in my opinion. The second is the fact that it is one of the few laptops that supports <a href="https://www.qubes-os.org/" target="_blank" rel="noreferrer noopener">Qubes OS</a>
out of the box (read the section further down for more information). The third reason is that it is one of the few laptops supported by the <a href="https://www.coreboot.org/" target="_blank" rel="noreferrer noopener">Coreboot</a>
project (read more about this further down). Overall, this laptop has blown me away. It is a laptop from 2012 with a dual core CPU that cost less than the USB-C dock I use for my thinkpad. Still, it handles day to day usage no problem and all the virtualization needed to run Qubes OS. I have not tried it with a normal Linux distrubution yet, but I am sure that it will handle everything like a champ.</p>
<figure><img src="https://grgcmz.github.io/img/02_tech/image_3.jpg"
alt="Corebooted Thinkpad X230 running Qubes OS and i3WM" width="1000"/><figcaption>
<p>Corebooted Thinkpad X230 running Qubes OS and i3WM</p>
</figcaption>
</figure>
<figure><img src="https://grgcmz.github.io/img/02_tech/image_2.jpg"
alt="Closeup of the Thinkpad X230&amp;rsquo;s swedish keyboard" width="1000"/><figcaption>
<p>Closeup of the Thinkpad X230&rsquo;s swedish keyboard</p>
</figcaption>
</figure>
<h1 id="peripherals">
Peripherals
<a class="heading-link" href="#peripherals">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h1>
<p>I have had some problems with RSI and other posture related pain over the past couple of years. These are some peripherals that really helped me a lot.</p>
<h3 id="logitech-mx-ergo-mouse">
Logitech MX Ergo Mouse
<a class="heading-link" href="#logitech-mx-ergo-mouse">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>I love <a href="https://www.logitech.com/en-us/products/mice/mx-ergo-wireless-trackball-mouse.910-005178.html" target="_blank" rel="noreferrer noopener">this mouse</a>
. I will never go back to using a normal mouse, ever. The Logitech Ergo is an ergonomic mouse made to help with RSI. In short, with a ordinary mouse you have to move your entire wrist and forearm to operate it. This is bad for your arm and can cause you loads of pain. With a trackball, you move the cursor by moving the ball on the mouse. There are <a href="https://www.dell.com/en-us/shop/trackman-marble-mouse/apd/a2538222/pc-accessories" target="_blank" rel="noreferrer noopener">some mice</a>
that have the ball on the top of the mouse which you operate with your whole hand. The MX Ergo positions moves the trackball to the side and lets you move the cursor by rotating the ball with just your thumb. The mouse can be used in two positions: a more classic, flat position, and a tilted, more natural position (which I prefere). It is wireless but can be used with a USB receiver (which I have installed on my X230 since Qubes and bluetooth are no friends). I highly reccomend this mouse! I could not use my computer without it.</p>
<h3 id="kinesis-advantage-2">
Kinesis Advantage 2
<a class="heading-link" href="#kinesis-advantage-2">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>The <a href="https://kinesis-ergo.com/shop/advantage2/" target="_blank" rel="noreferrer noopener">Kinesis Advantage 2</a>
is another ergnomic product made to improve your posture while typing. By splitting the keyboard, it enables you to keep a good posture and keep your hands shoulder width apart. It places many frequently used keys (e.g. space, enter, backspace, etc.) in two thumb clusters, enabling you to use these strong, but otherwise not very much used digits more often while typing. The keys are placed ortholinearly and the keywells are concave, enabling your fingers to lie in a more natural position and eliminating pronation. The keyboard is also programmable, so you can remap any key to whichever key you like and create macros. I use it with a modified US layout, but would like to learn dvorak in the future. This keyboard is very expensive, but if you suffer from RSI like me, it is well worth it in my opinion. There is a new version coming out at the end of 2021 called the <a href="https://kinesis-ergo.com/adv360/" target="_blank" rel="noreferrer noopener">Kinesis Advantage 360</a>
. It is very much the same keywells, but in a truly split design and apparently even more programmable. If you can, I would wait for that one to be released as it looks like it is going to be a great product.</p>
<h3 id="monitor">
Monitor
<a class="heading-link" href="#monitor">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>Sadly, I do not have an external monitor as I do not have a fixed office. Whenever I can, I just use some books to raise my laptop so that I can sit more upright and keep a good posture.</p>
<h1 id="other-tech">
Other Tech
<a class="heading-link" href="#other-tech">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h1>
<h3 id="google-pixel-4a">
Google Pixel 4a
<a class="heading-link" href="#google-pixel-4a">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>My phone of choice is a Google Pixel 4a. I really do not like Google. I think they have too much power and are too big of a monopoly. They also do very questionable things. Sadly, their phones are the only ones supported by projects such as <a href="https://calyxos.org/" target="_blank" rel="noreferrer noopener">Calyx OS</a>
and <a href="https://grapheneos.org/" target="_blank" rel="noreferrer noopener">Graphene OS</a>
, which is why I have one (read more about Calyx OS in the section below). It is a great phone overall. It&rsquo;s not as expensive as many other phones nowadays, it has a great camera and is fast enough for my needs.</p>
<figure><img src="https://grgcmz.github.io/img/02_tech/image_4.jpg"
alt="Google Pixel 4a running Calyx OS" width="1000"/><figcaption>
<p>Google Pixel 4a running Calyx OS</p>
</figcaption>
</figure>
<h3 id="ipad-pro-2018">
iPad Pro 2018
<a class="heading-link" href="#ipad-pro-2018">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>I bought the iPad Pro for uni a couple of years ago and it is a good piece of hardware and software. The Apple Pen work great, the battery life is good and the screen is really nice. I have been using it less and less lately though and I would like to get rid of it. It still comes in handy from time to time, especially for uni. Maybe I&rsquo;ll sell it after university as I don&rsquo;t like the closed nature of iPad OS.</p>
<h1 id="noteworthy-operating-systems">
Noteworthy Operating Systems
<a class="heading-link" href="#noteworthy-operating-systems">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h1>
<h3 id="fedora-34-gnome">
Fedora 34 Gnome
<a class="heading-link" href="#fedora-34-gnome">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p><a href="https://getfedora.org/" target="_blank" rel="noreferrer noopener">Fedora 34</a>
is my current distro of choice and the one I would reccomend to pretty much anyone (unless you have an Nvidia GPU, then just get <a href="https://pop.system76.com/" target="_blank" rel="noreferrer noopener">Pop!_OS</a>
). It&rsquo;s super easy to use, it has good software selection, it is always up to date, it has 6 month release cycle and 13 months of support for each release. Red Hat, the company behind Fedora, seems to be doing a lot of things right in my opinion. They listen to the community, push a lot of new technologies to the Linux desktop (such as Wayland, Btrfs and Pipewire) and work with OEMs to bring Linux to the &ldquo;masses&rdquo;. Fedora uses Wayland as it&rsquo;s default display server protocol, which is great, and it comes in many different flavors, such as Gnome, KDE and XFCE. I personally use the Gnome Desktop Environment as I think it looks good out of the box, it&rsquo;s stable and requires no faffing around. It simply works and lets you work.</p>
<h3 id="qubes-os">
Qubes OS
<a class="heading-link" href="#qubes-os">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p><a href="https://www.qubes-os.org/" target="_blank" rel="noreferrer noopener">Qubes OS</a>
is a big topic which I would like to cover in a future blog post. I&rsquo;ll try to keep it short for now. If you don&rsquo;t know Qubes OS, it is a security focused operating system that uses compartimentalization through virtualization (that&rsquo;s a mouth full!). What this basically means, is that Qubes uses many virtual machines (virtual computers running on your main OS) to separate various parts of your life. These VMs are all sandboxed environments that can be persistent (like where you store your personal or work files) or disposable (like where you would open a shady email attachment or surf the web). This makes your computer much more secure in theory, as it keeps all the parts of your life separated one from the other and a virus downloaded while browsing the web would not have access to your whole computer with your private files. There is much more to it, but I&rsquo;ll leave it at that for now.</p>
<p>Qubes OS as it is today is not for your average computer user as it requires quite a bit of technical understanding to use as a daily machine. This is one of the reasons why I wanted to try it out in the first place. My plan is to learn bit by bit how to use it and create guides as I go that are hopefully also easy to follow for non-technical users. I think non-technical users are often the ones that would benefit the most from such an OS. Here I am thinking of activists, laywers, politicians, or other people with a stricter threat model.</p>
<p>Though for me this OS goes far beyond my threat model, I am really enjoying using it on a daily basis and might even switch to it full time. There is something to compartimentalizing everything. If it&rsquo;s not for security reasons, it can also be to separate work and personal life and maybe remove some distractions. Weirdly enough, there is just such simplicity in, for example, having your filesystem only show you personal files when you are in your personal VM and only work files in your work VM. Watch out for future reviews and updates.</p>
<h3 id="calyx-os">
Calyx OS
<a class="heading-link" href="#calyx-os">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>This is one of my favorite things in the world right now. Calyx OS is a degoogled version of Android that is avialable for Google Pixel phones (which is kind of paradoxical but actually makes total sense). It maintains the security model of stock android (not improving on it like, for example, <a href="https://grapheneos.org/" target="_blank" rel="noreferrer noopener">Graphene OS</a>
does) but removes all/most proprietary bits that talk to google. It offers a great commandline installer that is super easy to use and gives you one click installs during the first boot to install, among other things, <a href="https://microg.org/" target="_blank" rel="noreferrer noopener">MicroG</a>
(alternative to Google&rsquo;s GSM), Signal, Fdroid and Aurora Store. There is a Matrix chat with the developers where you can ask questions if you get stuck somewhere or have a bug or so, and is backed by a non-profit foundation called the Calyx institute. If you wish to learn more about the Calyx Institute and <a href="https://calyxos.org/" target="_blank" rel="noreferrer noopener">Calyx OS</a>
, head over to <a href="https://calyx.org/" target="_blank" rel="noreferrer noopener">Calyx.org</a>
to learn more.</p>
<h3 id="skulls">
Skulls
<a class="heading-link" href="#skulls">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>While not an operating system in and of itself, <a href="https://github.com/merge/skulls" target="_blank" rel="noreferrer noopener">Skulls</a>
enables to boot into operating systems, hence I included it into this post. Skulls makes it easier to flash coreboot onto supported thinkpad devices. There are very few devices supported, one of which is the X230. Coreboot is an opensource, minimal bootloader which also gives you the possibilty to neuter the <a href="https://en.wikipedia.org/wiki/Intel_Management_Engine" target="_blank" rel="noreferrer noopener">Intel Management Engine</a>
. The Skulls project basically provides pre-built images of coreboot for specific laptop models. I have flashed my X230 with Skulls and have not had any problem whatsoever for now. If you are interested, there is a jailbreak called 1vyrain that enables Xx30 Series Thinkpads to be flashed without specialized hardware flashers (i.e. only using software), which is what I did. Find out more <a href="https://github.com/n4ru/1vyrain/" target="_blank" rel="noreferrer noopener">here</a>
.</p>
<h2 id="final-words">
Final words
<a class="heading-link" href="#final-words">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h2>
<p>I hope you enjoyed reading about my personal tech setup. If you have any questions please feel free to contact me via email by taking this website&rsquo;s subdomain at pm dot me.</p>
</description>
</item>
<item>
<title>About</title>
<link>https://grgcmz.github.io/about/</link>
<pubDate>Tue, 24 Aug 2021 19:24:00 +0200</pubDate>
<guid>https://grgcmz.github.io/about/</guid>
<description><p>My name is Giorgio. I am a computer scientist from Switzerland. I am passionate about the free and open source software movement and digital privacy. I am a big fan of many things, among which are linux, photography and ergonomic keyboards (<a href="https://kinesis-ergo.com/shop/advantage2/" target="_blank" rel="noreferrer noopener">this</a>
one in particular). This website is a place for me to share my thoughts, technical guides and personal projects.</p>
</description>
</item>
<item>
<title>Securing your Online Accounts with Bitwarden</title>
<link>https://grgcmz.github.io/posts/passwords/</link>
<pubDate>Wed, 26 May 2021 22:52:53 +0200</pubDate>
<guid>https://grgcmz.github.io/posts/passwords/</guid>
<description><h1 id="securing-your-online-accounts-with-bitwarden">
Securing your Online Accounts with Bitwarden
<a class="heading-link" href="#securing-your-online-accounts-with-bitwarden">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h1>
<p>The combination of username and password has long been the standard way of authenticating users when they log into a website, service, etc. This combination is what keeps our personal messages with friends and family, our emails, our pictures and all the rest that is online from being accessed by everyone. They are the gatekeepers to our online presence which is why it is so important that they are secure. We are taught many things in school, but nobody ever told us how to choose a good password and how to secure our online accounts so it is obvious that most people don&rsquo;t know how to do it. This is where this guide hopefully comes in handy.</p>
<h2 id="1st-step-get-a-password-manager">
1st Step: Get a Password Manager
<a class="heading-link" href="#1st-step-get-a-password-manager">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h2>
<p>The most important thing in my opinion is to have different passwords and possibly different emails and usernames for different websites. Since nowadays it is not unusual to have dozens of online accounts, it can be very hard to keep track of all login data. Here is where Password Managers come in. These are apps that can be installed on your phone, laptop or tablet where all your passwords are stored in one place. Some of them are more bare bones and don&rsquo;t do a lot more than store passwords, others offer features like random password generation, password synchronization and password sharing. I have tried different password managers, but the best one I have found up until now has been Bitwarden. This password manager is Free and Open Source, but also offers paid plans for more advanced functionality. I recommend starting with the free version, which is more than enough in the beginning. You can always upgrade later.
Bitwarden is available on Android, IOS, Mac OS, Windows and Linux. It also offers a browser extension for Mozilla Firefox, Google Chrome and other Chromium based browsers. If you want to know more about Bitwarden, click <a href="https://bitwarden.com/" target="_blank" rel="noreferrer noopener">here</a>
to visit their website. They also regularly publish results from their Security Audits on their Blog (You can find the latest one <a href="https://bitwarden.com/blog/post/bitwarden-network-security-assessment-2020/" target="_blank" rel="noreferrer noopener">here</a>
. This shows the company&rsquo;s interest in being as transparent as possible, which is a must if you need to put so much trust in an application.</p>
<h2 id="2nd-step-choose-a-strong-master-password">
2nd Step: Choose a strong Master Password
<a class="heading-link" href="#2nd-step-choose-a-strong-master-password">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h2>
<p>Once you have downloaded the Bitwarden App from the Google Play Store, Apple App Store, <a href="https://mobileapp.bitwarden.com/fdroid/" target="_blank" rel="noreferrer noopener">F-Droid</a>
or whatever store you might be using, you need to create an account. The master password in conjunction with your email address is what is needed to access your vault. The vault is where all of your passwords are stored. It goes without saying that this password needs to be extremely secure. One common misconception is that for a password to be secure it needs to be hard to remember and some weird combination of characters. This is true of your other passwords in your vault, but not for your master password. Instead of thinking of it as a pass<strong>word</strong>, I would rather think of it as a pass<strong>phrase</strong>. The way an attacker will crack your password is either by using a word list attack, a Brute-force attack or through Social Engineering. The latter is (possibly) mitigated by using things like 2 Factor Authentication (2FA), the former two are what a good passphrase should prevent. The longer your passphrase, the more possible combinations there exist and thus the longer it will take for a computer to crack it. What I do is I try to think of a silly but easy to remember phrase. An example could be: &ldquo;<em>Fred Westerson walks on rotten Bananas</em>&rdquo;. I hope there is nobody out there called Fred Westerson, but for some reason that is what I came up with spontaneously. This passphrase should take around 10,826,447,514,211,228 centuries to crack. Pretty secure, right?</p>
<figure><img src="https://grgcmz.github.io/img/passwords/image_1.png"
alt="Image showing the creation of a new account on Bitwarden" width="400"/><figcaption>
<p>Image showing the creation of a new account on Bitwarden</p>
</figcaption>
</figure>
<h2 id="3rd-step-start-changing-your-passwords">
3rd Step: Start changing your passwords
<a class="heading-link" href="#3rd-step-start-changing-your-passwords">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h2>
<p>This is probably the most tedious part since you need to go in and change every password from every online account you have. I suggest you do this step by step and change a password the next time you use a service.
If you had to think about a new random password for each account, you&rsquo;d run out of words to use fairly quickly. This is why Bitwarden (and other password managers) have a password generation feature. Just go into the app, create a new password and click on the circular arrows next to the password box. I suggest you to use a password that has around 25 characters and that uses numbers, upper and lower case letters as well as special symbols. This way you have a very secure password, but not too long so that it is impossible to type out if you cannot copy paste it once for some reason.</p>
<figure><img src="https://grgcmz.github.io/img/passwords/image_2.png"
alt="Your Vault the first time you start the application should look something like this. Click on Add an item to add a new entry to your vault." width="400"/><figcaption>
<p>Your Vault the first time you start the application should look something like this. Click on <em>Add an item</em> to add a new entry to your vault.</p>
</figcaption>
</figure>
<figure><img src="https://grgcmz.github.io/img/passwords/image_3.png"
alt="Type in the Name of the Service, your email/username you use for this account and click on the arrows to generate a new random password." width="400"/><figcaption>
<p>Type in the Name of the Service, your email/username you use for this account and click on the arrows to generate a new random password.</p>
</figcaption>
</figure>
<figure><img src="https://grgcmz.github.io/img/passwords/image_4.png"
alt="Toggle the types of characters you want your password to contain. I always toggle all four and set the length to 25 characters." width="400"/><figcaption>
<p>Toggle the types of characters you want your password to contain. I always toggle all four and set the length to 25 characters.</p>
</figcaption>
</figure>
<h2 id="extra-tips-and-tricks">
Extra Tips and Tricks
<a class="heading-link" href="#extra-tips-and-tricks">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h2>
<h3 id="change-your-autofill-service">
Change your autofill service
<a class="heading-link" href="#change-your-autofill-service">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>If you want to make your life that much easier, change your default Auto fill Service to be Bitwarden. This way you get prompted to &ldquo;Auto fill with Bitwarden&rdquo; if you ever have to login somewhere.</p>
<h4 id="on-ios">
On IOS
<a class="heading-link" href="#on-ios">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h4>
<p>Go to Settings &gt; Passwords &amp; Accounts &gt; Autofill Passwords &gt; Choose Bitwarden from the list</p>
<figure><img src="https://grgcmz.github.io/img/passwords/image_5.png"
alt="Autofill with Bitwarden on Iphone." width="400"/><figcaption>
<p>Autofill with Bitwarden on Iphone.</p>
</figcaption>
</figure>
<h4 id="on-android">
On Android
<a class="heading-link" href="#on-android">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h4>
<p>Open the Bitwarden App &gt; Click on Settings &gt; Click on Auto-fill Service to enable it (follow the instructions) &gt; go back to the settings and click on Auto-fill Accessibility Service to enable it (again follow the instructions)</p>
<h3 id="install-the-extension-for-your-browser-on-your-laptop-or-desktop">
Install the extension for your browser on your Laptop or Desktop
<a class="heading-link" href="#install-the-extension-for-your-browser-on-your-laptop-or-desktop">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>Do a quick DuckDuckGo Search (or Google Search if you are still using Google&hellip;) for &ldquo;Bitwarden Extension [Your Browser Name]&rdquo; replacing the square brackets with the name of the browser you are using and install the extension. Please make sure that the extension is the original from the original developers (you can also tell that if it has like 50 downloads, it&rsquo;s probably going to be fake) since that would really suck if you typed in your master password and Email in a fake version of the app.</p>
<h3 id="enable-biometrics">
Enable Biometrics
<a class="heading-link" href="#enable-biometrics">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>This is totally up to you. If you want to have a bit of an easier time, go to settings and turn on &ldquo;Unlock with Biometrics&rdquo; to use FaceID or your Fingerprint to unlock your vault. Be aware though, that this is going to make your Vault less secure if someone where to get his hands on your phone. You need to judge for yourself, if this is a worthwhile risk you want to accept. In my opinion, if you are not a high profile person that might be directly targeted (like maybe a Journalist, Lawyer, etc.) and forced to unlock your phone and password manager, you will be fine with this option turned on. But don&rsquo;t quote me on that :wink:</p>
<h3 id="for-the-nerds-and-techies-self-hosting">
For the Nerds and Techies: Self Hosting
<a class="heading-link" href="#for-the-nerds-and-techies-self-hosting">
<i class="fa fa-link" aria-hidden="true" title="Link to heading"></i>
<span class="sr-only">Link to heading</span>
</a>
</h3>
<p>Bitwarden can also be self hosted on a server of your choosing. Go <a href="https://bitwarden.com/help/article/install-on-premise/" target="_blank" rel="noreferrer noopener">here</a>
to find instructions on self hosting your own instance of Bitwarden.</p>
</description>
</item>
</channel>
</rss>