Today, I spent hours stressing over our veeam backups, only to discover that we've mostly lost the encryption key for our massive 16TB backup. It's a mess! The previous staff kept their password information in KeePass, but time has taken its toll on that too. So I'm wondering, how many people here create physical backups of their KeePass or Bitwarden password databases? Would it make sense to keep a paper copy at the boss's house?
5 Answers
You might want to consider putting the list with your company’s lawyer instead of having it at the boss's house. Just to keep it more secure and professional.
I had a similar situation after leaving a previous job. A tech called me up asking for the KeePass passphrase because they didn't write down the safe combination I had given before I left. I jokingly told him it was in the safe and to call me back when he found the key to 'rack 27.' He had a good laugh when he realized there was no rack 27! It’s an important reminder to have a backup of your backups!
I would have charged them too as a consultant fee, honestly!
If you really want to be cautious, consider splitting the password into parts and giving them to different trusted colleagues to store securely. It mitigates the risk of anyone going rogue.
We do a monthly encrypted dump to a USB drive, and store that in a safe at our datacenter. We also keep a password for the USB in a secure location. It’s a solid plan!
Sure, but what happens if your datacenter catches fire? Always have a backup off-site!
Safety deposit boxes are a great option! Off-site, secure, and protected against disasters. I wouldn’t trust important documents at someone's home unless absolutely necessary.
You definitely should've charged for that! At least three times your old rate, right?