You know, even being on IT I like watching these tidbits from Leo, there are always minutia details everyone gloss over and I'm surprised to see questions I never asked myself.
If someone in your household is a concern for you, then I suggest locking your computer (such as triggering a password protected screen saver). The "tsdiscon" command (comes with Windows) will effectively issue a "switch user" order, which will bring you back to your login screen. You will still be logged in, but you will have to enter your password to return to what you were doing. You can set-up a desktop shortcut, with the "tsdiscon" command. The above might be easier than involving your password manager, to log back in to your on-line accounts.
Sign out of everything if you think someone might look at your device ie public places. Basically think about it would you leave important paper documents out for people to be able to look at.
Always use a Incognito Browser to login, but I would NEVER EVER login to anything on someone else's computer you don't know if there are key loggers installed or even the keyboard can have a built in key logger. It would be super easy for me or anyone to put a key logger on the library PC and get everyone's login details. AVOID at all costs.
The only websites I leave logged in are sites that I do not really care if I end up losing them. Getting compromised is extremely unlikely for me but I still logout from important accounts just for peace of mind!
@@ExploitedShells your attitude towards security is lax. Any site even not important ones have your digital signature that can identify you. Every website you visit captures your unique footprint.
@markylon what exactly does that have to do with the question "should I always sign out of my online account?" Browsers now use cookie isolation (TCP/ETP) and have settings to further isolate sessions, at least the privacy focused ones. You can also use extensions like Firefox Containers to isolate. You're just blabbering and replying under every comment. Relax!
I do it always. I think it is more unlikely to forgot to sign out if you do it every time. Same with the home keys. It is more unlikely that you will lock your self out if you always carry your keys.
Since I live alone and nobody ever touches my computer except me, I don't bother signing out of anything. Whatever I'm signed into will disconnect when I turn my computer off at the end of the day.
Not actually true, your session remains open, also if your machine gets compromised without your knowledge malware etc your login in session can be cloned and they can login as you on the same session without your password or 2FA. You should also clear you cookies and browser cache every day.
@markylon Sure, but the chances of that happening are quite remote. Otoh, you can only have close to 100% security at the cost of maximum inconvenience. Most people will strike a reasonable balance, such as Leo elaborates on here.
They all do, but you have the option not to have them save them. That's what the drop down box is for when you go to a site. I never allow Firefox to save passwords for that reason.
Yes it does. If you're logged in your SESSION can be cloned via malware and a 3rd party can login as you without your password or 2FA. By logging out you kill the session. However your password cannot be used if you have 2FA, but your SESSION can be CLONED without 2FA or password, hence why you should always log out daily and deleted all cookies and browser cache.
I use different browsers and stay signed in using this browser only for the signed in purpose, like chrome for Gmail or Edge for Outlook and Bing rewards and so on. For multiuser PCs I use my portable browsers on a USB stick which is removed at the end of the session.
I would never ever ever dream of putting a USB stick into anyone else's machine. You're asking for trouble. I could add malware to your USB stick the second you put it in my machine and I could clone your login session. Basic hacking skills
Not only log out, but if you use a banking app or browser page on a phone or tablet or laptop I don’t save the password in app in case it is lost or stolen.
@stealthzi7465 - everyone should have their own phone and their email and their own logins. Not only for security reasons, pero also for customization reasons. I have my desktop under my login set up for maximum efficiency to get things done. I don't need someone else's preferences messing up my "mise en place"
If your PC is compromised without your knowledge the LOGIN SESSION TOKEN can be stolen and login with the same session without your password or 2FA. Also it's good practice to log out and DELETE all your cookies and browser CACHE every day.
✅ Watch next ▶ In Search of Perfect Security ▶ th-cam.com/video/EaN5KsivV54/w-d-xo.html
You know, even being on IT I like watching these tidbits from Leo, there are always minutia details everyone gloss over and I'm surprised to see questions I never asked myself.
If someone in your household is a concern for you, then I suggest locking your computer (such as triggering a password protected screen saver).
The "tsdiscon" command (comes with Windows) will effectively issue a "switch user" order, which will bring you back to your login screen. You will still be logged in, but you will have to enter your password to return to what you were doing.
You can set-up a desktop shortcut, with the "tsdiscon" command.
The above might be easier than involving your password manager, to log back in to your on-line accounts.
Short and sweet. Straight to the point. Thanks.
Sign out of everything if you think someone might look at your device ie public places. Basically think about it would you leave important paper documents out for people to be able to look at.
You should sign out if you use a public PC at a library. Closing the browser will not sign out of your account.
Always use a Incognito Browser to login, but I would NEVER EVER login to anything on someone else's computer you don't know if there are key loggers installed or even the keyboard can have a built in key logger. It would be super easy for me or anyone to put a key logger on the library PC and get everyone's login details. AVOID at all costs.
The only websites I leave logged in are sites that I do not really care if I end up losing them. Getting compromised is extremely unlikely for me but I still logout from important accounts just for peace of mind!
You're a hackers dream. Your sessions can be cloned and if you're active on a live PC then this is a back door into your Machine.
@markylon what are you even blabbering about?
@@ExploitedShells your attitude towards security is lax. Any site even not important ones have your digital signature that can identify you. Every website you visit captures your unique footprint.
@markylon what exactly does that have to do with the question "should I always sign out of my online account?"
Browsers now use cookie isolation (TCP/ETP) and have settings to further isolate sessions, at least the privacy focused ones. You can also use extensions like Firefox Containers to isolate.
You're just blabbering and replying under every comment. Relax!
I do it always. I think it is more unlikely to forgot to sign out if you do it every time. Same with the home keys. It is more unlikely that you will lock your self out if you always carry your keys.
Since I live alone and nobody ever touches my computer except me, I don't bother signing out of anything. Whatever I'm signed into will disconnect when I turn my computer off at the end of the day.
Not actually true, your session remains open, also if your machine gets compromised without your knowledge malware etc your login in session can be cloned and they can login as you on the same session without your password or 2FA. You should also clear you cookies and browser cache every day.
@markylon Sure, but the chances of that happening are quite remote. Otoh, you can only have close to 100% security at the cost of maximum inconvenience. Most people will strike a reasonable balance, such as Leo elaborates on here.
i dont have a ms account! always use a local account.
He’s talking about signing out of online accounts. It could be any account, mot just Microsoft.
If your browser saves your passwords it doesn't help signing out anyway.
They all do, but you have the option not to have them save them. That's what the drop down box is for when you go to a site. I never allow Firefox to save passwords for that reason.
Yes it does. If you're logged in your SESSION can be cloned via malware and a 3rd party can login as you without your password or 2FA. By logging out you kill the session. However your password cannot be used if you have 2FA, but your SESSION can be CLONED without 2FA or password, hence why you should always log out daily and deleted all cookies and browser cache.
@ and then!.. I could reformat my hard drive install a different Os and make new accounts for everything again!..
@markylon Majority have false sense of security. I wish Leo talked about this.
I use different browsers and stay signed in using this browser only for the signed in purpose, like chrome for Gmail or Edge for Outlook and Bing rewards and so on. For multiuser PCs I use my portable browsers on a USB stick which is removed at the end of the session.
I would never ever ever dream of putting a USB stick into anyone else's machine. You're asking for trouble. I could add malware to your USB stick the second you put it in my machine and I could clone your login session. Basic hacking skills
How about internet banking?
Most will actually KILL the session after a few minutes of inactivity
Not only log out, but if you use a banking app or browser page on a phone or tablet or laptop I don’t save the password in app in case it is lost or stolen.
@karinhart489 you shouldn't need a password on an app it uses biometrics to login
I follow Steve Gibson's advice. TNO - Trust No One. Always sign out.
What even your family? That you live with. If youv you something to hide then yeah..
@stealthzi7465 - everyone should have their own phone and their email and their own logins. Not only for security reasons, pero also for customization reasons.
I have my desktop under my login set up for maximum efficiency to get things done. I don't need someone else's preferences messing up my "mise en place"
Stepping away from my laptop I lock it.
Absolutely. And my passwords are complex enough that it sometimes takes me more than one attempt 👍🏻👍🏻👍🏻
Micrsooft says they will no longer sign you out automatically of your account
Which is a) mentioned in the video and b) part of the reason I did the video.
Just one more reason microsoft needs a wedgie.
If your PC is compromised without your knowledge the LOGIN SESSION TOKEN can be stolen and login with the same session without your password or 2FA. Also it's good practice to log out and DELETE all your cookies and browser CACHE every day.
Yes totally!