🔑 Password Security Guide

Use KeePassXC or a similar offline password manager to generate truly random passwords. Set the generator to create passwords of at least 20 characters including uppercase, lowercase, numbers, and symbols. Alternatively, use the Diceware method to create memorable passphrases — roll physical dice to select random words from a published word list. Four to six Diceware words provide excellent entropy while remaining memorizable. Never rely on personal creativity for password generation — humans are predictable.

Store all credentials in an encrypted KeePassXC database protected by a strong master passphrase you can memorize. Keep the database file on an encrypted USB drive or within Tails Persistent Storage — never on cloud services. Enable auto-lock after 2-5 minutes of inactivity. Use the auto-type feature (Ctrl+Shift+U) to enter credentials without using the clipboard, which protects against clipboard-sniffing malware. Back up your database to a second encrypted storage device.

Never write passwords in plain text on your computer. Never share passwords via unencrypted messages. Change your market passwords every 30-60 days. If a market reports a data breach, change your password immediately. Enable all available security features (2FA, PGP, PIN) in addition to a strong password.