> Or, and more to the point, having generated a different password how do you remember which sites need a V1 password and which need V2?
> When sites introduce silly rules around password structure, how do you make sure your passwords conform?
Store _THESE_ rules in a central database. Not the passwords. Those rules can be public at no cost to security to the end user.
But LastPass, KeePass, OnePass and all sorts of Password generators store the actual friggen password, instead of salts or public information (like "5th password on gmail")
> When sites introduce silly rules around password structure, how do you make sure your passwords conform?
Store _THESE_ rules in a central database. Not the passwords. Those rules can be public at no cost to security to the end user.
But LastPass, KeePass, OnePass and all sorts of Password generators store the actual friggen password, instead of salts or public information (like "5th password on gmail")