HN Reader

Safari Technology Preview 220 Release Notes (developer.apple.com)

1 points by tosh 2m ago 0 comments

Gurus of 90s Web Design: Zeldman, Siegel, Nielsen (cybercultural.com)

1 points by panic 6m ago 0 comments

Flame Charts: The Time-Aware Sibling of Flame Graphs (polarsignals.com)

1 points by tanelpoder 6m ago 0 comments

Haiti's Beleaguered Government Launches Drones Against Gangs (wsj.com)

1 points by Michelangelo11 7m ago 0 comments

Archaea (en.wikipedia.org)

1 points by lukan 8m ago 0 comments

Kigen – Design system token and style generator (kigen.design)

1 points by realvjy 11m ago 1 comments

Einstein, Hawking, and Tao (Haiku) (jerry.wtf)

1 points by personjerry 13m ago 1 comments

Michigan Isn't Supposed to Have Earthworms [video] (youtube.com)

1 points by tarcar 13m ago 0 comments

Agents Aren't Juniors, They Are Amnesiac Spies (avdi.codes)

2 points by kiyanwang 19m ago 0 comments

Agentic book – The Human Algorithm [pdf] (github.com)

1 points by JayD0ubleu 19m ago 0 comments

Philips Ease (thefoggiest.dev)

1 points by ingve 22m ago 0 comments

Haskell Weekly Issue 474 (haskellweekly.news)

1 points by amalinovic 26m ago 0 comments

Intel Shows Off Professional Battlemage Cards (semiaccurate.com)

2 points by walterbell 29m ago 0 comments

Ivey Business School's Value Investing Program – Adam Waterous [video] (youtube.com)

1 points by chenchenchen 41m ago 1 comments

Top math software platform still offline following ransomware attack (techradar.com)

1 points by howisthatposs 42m ago 0 comments

Show HN: OpenDeRisk – open-source intelligent app risk manager (github.com)

1 points by jamie-vesoft 45m ago 0 comments

China extends its reach into the Solar System with launch of asteroid mission (arstechnica.com)

2 points by rbanffy 50m ago 1 comments

Elon Musk exits US Government after breaking with Trump on tax bill (theguardian.com)

5 points by dagss 50m ago 0 comments

Redesigning the Initial Rust Bootstrap Sequence (blog.rust-lang.org)

2 points by ingve 53m ago 0 comments

NI3 (en.wikipedia.org)

1 points by keepamovin 59m ago 2 comments

Rethinking African edtech: Why AI alone won't be enough (techcabal.com)

1 points by MarcoDewey 1h ago 0 comments

Show HN: Flags Quiz – Flags of All World Countries (flags-quiz.com)

1 points by artiomyak 1h ago 0 comments

Saying Bye to Glitch (pketh.org)

2 points by tobr 1h ago 0 comments

We built a distributed cache for S3 (clickhouse.com)

1 points by samaysharma 1h ago 0 comments

Read Frog – Open-Source AI Language Translator and Teacher in Browser (github.com)

1 points by mengxi-ream 1h ago 1 comments

The weight of an entire industry trying to convince you that you're inadequate (buttondown.com)

3 points by tobr 1h ago 0 comments

Show HN: Warden – A Native (and Free) AI Chat App for macOS (karatsidhu.gumroad.com)

2 points by skarat 1h ago 0 comments

What's cooking on Sourcehut? Q2 2025 (sourcehut.org)

1 points by Tomte 1h ago 0 comments

STOC Best Paper Award: How to Find the Shortest Path – Faster (mpi-inf.mpg.de)

1 points by mfiguiere 1h ago 0 comments

Cyber Resilience Act and Open Source: What Maintainers Need to Know [video] (youtube.com)

2 points by lis 1h ago 0 comments

Glacier collapse buries most of Swiss village (bbc.com)

6 points by hubraumhugo 1h ago 1 comments

Show HN: Entropy – Sharing screen is scary in SaaS age (entropysec.io)

2 points by RazCo 1h ago 0 comments

Emergency We Cannot Feel: On the Psychological Unreadiness for American Collapse (notesfromthecircus.com)

7 points by cmurf 1h ago 2 comments

Statically typed languages are like Elephants

1 points by pyeri 1h ago 0 comments

Raw.githubusercontent.com – How to authenticate and see headers with info? (github.com)

1 points by jarofgreen 1h ago 0 comments

No iOS 19: Apple Going Straight to iOS 26 (macrumors.com)

1 points by Tomte 1h ago 0 comments

Show HN: I made an AI prompt manager to stop rewriting the same prompts (echostash.app)

1 points by debeast 1h ago 0 comments

Front End Engineering Team Working Style Guide (github.com)

1 points by vishwajeetv 1h ago 0 comments

The Maid Who Restored Charles II (historytoday.com)

3 points by samclemens 1h ago 0 comments

YouTube Is Swallowing TV Whole, and It's Coming for the Sitcom (bloomberg.com)

2 points by helsinkiandrew 1h ago 1 comments

The Art of the Critic (metropolitanreview.org)

3 points by benbreen 1h ago 1 comments

The Nature of Thought: A conversation with a Claude instance (docs.google.com)

1 points by doener 1h ago 1 comments

Bidirectional typing with unification for higher-rank polymorphism (github.com)

1 points by matt_d 1h ago 0 comments

Comprehensive Rust - a multi-day Rust course developed by the Android team (github.com)

2 points by transpute 1h ago 1 comments

Identifying Unmarked Iron (castironcollector.com)

1 points by lelandfe 1h ago 0 comments

Paradoxical Questions and Simple Wonder Lead to Great Science (quantamagazine.org)

1 points by nsoonhui 1h ago 0 comments

Tesla is losing money insuring its own cars (electrek.co)

2 points by iancmceachern 1h ago 0 comments

Codestral Embed – embedding model for code (mistral.ai)

2 points by nkko 2h ago 0 comments

Show HN: Sokuji – Open-source real-time speech translation for Microsoft Teams (github.com)

1 points by jiangzhuo 2h ago 0 comments

What happens when the intelligence goes out? (robinsloan.com)

1 points by blueridge 2h ago 1 comments

A safe way to keep your password on your PC (Goodguy Ernie Method)

2 Geordinator 4 5/28/2025, 9:09:52 AM
Hiya,

I just signed up a few minutes ago and, full disclosure. I'm not a hacker. Not even close. But I had what I think is a pretty clever idea and wanted to know what the experts thought. This will probably be my first and last post. I hope you like it.

I’ve always been told by security "experts" to never keep my password(s) on my computer. But what about this scenario?

I’m keeping an unencrypted .txt file on an unencrypted hard drive on a PC with no password, no firewall, and a router that’s still set to admin/admin.

The file (which is the only thing on my desktop) is called: “THIS DOCUMENT CONTAINS MY MASTER PASSWORD FOR MY PASSWORD MANAGER. PLEASE DON’T DO ANYTHING BAD, OKAY?”

Inside is a single string of characters. Could be 5,000, could be 1,000,000 depending on how secure I want to feel. Somewhere in that big mess is my actual password, an uninterrupted substring between 8 and 30 characters long.

To find it, I just Ctrl+F for a small string of digits I remember. It might be 4 to 8 characters long and is somewhere near my real password (before, after, beginning, end, whatever I choose). I know where to start and where to stop.

For example, pretend this is part of the full string: 4z4LGb3TVdkSWNQoL9!l&TZHHUBO6DFCU6!czZy0v@2G3R2Vs2JOX&ow)

My password is: WNQoL9!l&TZHHUBO6DFCU6!*czZy0v

I know to search for WNQo and stop when I hit @.

So, what do you think?

Is it safe to store my password like this on my PC?

Comments (4)

Agraillo · 17h ago
I think you invented (or reinvented) a simplified password manager, or a plain-text password manager. A usual PM solves the task of managing by human memory unmanageable: plenty of passwords with variable complexities routing them all to a single one intended for the human. In your system you have your own version of the master password (prefix + suffix) that locks out your actual password (a single substring). There are obvious drawbacks compared to a general PM like a much lower space of possible variants or needing to manage this manually (like generating the file or choosing randomly your prefix and suffix). But there is at least one benefit, if you keep the system simple enough (while not making it simple in generating the sequences), no hidden vulnerability should waiting to happen
rzzzwilson · 22h ago
Only one password? The experts (I'm not one of them) tell you to have a different password for each account, online and offline. The point is you don't want one leaked password to compromise any other account. I have something like 200 online accounts and they all have different passwords.
JSR_FDED · 21h ago
He is referring to his master password for his password manager.
beardyw · 21h ago
In some ways worse, since the password manager is unlikely to lock after multiple tries. They typically use lots of cycles to encrypt and decrypt to slow down multiple attempts. Given a minimum and maximum password length you can calculate how many tries to be sure to get it, and half that is the average.