>It seems a bit of a hassle
Is it? Just get a cheap used laptop for sensitive stuffs, it won't take much space. I have like 4 of them.

>>1722
i think you're being overly paranoid
also, dunno what your bank is like but it has been i think a industry norm for like 15 years to require MFA for basically every action you take
anyway, if you really that concerned you could look into getting a hardware token instead of a brand new device, or virtualization/sandboxing

Even if you use trusted and expensive services you can still get super fucked if the someone up the chain pushed out a bad update, such as what happened to microsoft a few months ago with their security provider.
The only way to be completely safe is to physically isolate your hardware. Cant get a virus if it cant connect to you. Doujin and ero games are stuff I put onto my old laptop which is more convenient to sit in bed and play, and if something goes wrong with my dolphin porn I'm not losing much. It's also a good idea to get your "illicit goods" from trusted sources. A lot of this can be avoided with just paying attention to where the link goes.

>>1722
99% of the stuff you listed is not realistic and only works in theory. In reality all you have to do is not download random shit on the internet and not fall for phishing scams.

>>1726
This,
OP and anyone who is interested in securing their electronic devices should define their own threat model before implementing solutions.
Anyway, most people only want to be safe from cybercriminals and this advice is probably the most important. If I wanted to add one more specific, I'd recommend to create a separate account for administration tasks (done by default on most Linux distributions but not on Windows).

have some fun playing with Qubes OS which isolates every application into its own virtual machine

>>1722
Backup your files in case of ransomware.
Don't reuse passwords.

Having a USB containing a small OS that loads into RAM and doesn't touch your HDD could work, like Puppy Linux or Slax.

There are small things you can do that don't necessarily fall under "don't click on weird stuff".

I don't keep any passwords on my device, after I got a virus that pulled all mine from Firefox's password cache.

Don't let your browser remember passwords, it's stored basically in plaintext as far as viruses are concerned.

Recently I've taken to using KeePass since managing my passwords in an encrypted excel file was becoming a hassle. And now that I'm finally using it I have to say that I feel like a big retard for having waited so long to pick it up. It's so much more convenient than the excel file in terms of organization and copying the login details (copying is just CTRL+B for username/email and CTRL+C for the password) and because it's stored locally I don't have to worry as much about some sort of cloud breach exposing all my passwords. Only thing I need to worry about is someone getting onto my PC and finding it but I have it set to auto-away after like 5 minutes and need the password again so that's also an extra security step over excel, and probably more secure than storing my logins in my ff cache.

Best part is since I can also use it for generating a new secure password each time I just created a default generation setting I like and now whenever I create a new account since I have to use KeePass to generate the password I always remember to store the login credentials on it. I don't know why I took so long to make the move.

Only issue I would have would be if my PC corrupted or the drive it's on failed so I'm going to backup the database on multiple flash drives and keep them regularly updated so that doesn't happen.

>>3663
Oh shit I was actually looking at Bitwarden the other day. Might stop being a retard as well, I see there's also a KeePassXC.

>>3664
I've seen people recommend Bitwarden as well, but it looks like it costs money? I'm not too sure on the fine details of if it's actually better than KeePass or not.

Oh, Bitwarden is cloud-based. Thought I saw some people saying they ran self-hosted versions.

>>3663
>encrypted excel file
I used to store all my logins on my phone as plain text notes before I switched to KeePass...

>>1722
>If you play doujin games or eroge, you often have to download them from random untrusted sources.
I got a ransomware from a game I downloaded on recommendation by an anon from 4jp. God knows why the malware didn't execute it's payload. I was running it on a Windows 7 machine and I think I even had Windows Defender disabled.
The game was really good though. I wish RPG maker games ran well in Virtualbox. They do not.
>I'm thinking about getting a second device only for sensitive stuff, like banking, shopping and managing passwords. It seems a bit of a hassle, but I can't think of any other way.
2 of any device is a miserable existence in my opinion. If you really care so much, buy another hard drive/ssd and install it into your computer (but leave it disabled) and boot into it for shopping and banking.

are there actual good antivirus tools what are they

>>3672
>I wish RPG maker games ran well in Virtualbox. They do not.
Do Linux virtual machines have better options? Was thinking about finally working up the motivation to rearrange all my shit for a dual boot linux. Bazzite looks cool for a g a m e r like me

>>3664
Actually was thinking about this for a while and was wondering what kissu’s actual computer experts think about this one. Like what does Vermin think

>>3761
Certified kissu computer expert™ here, KeePassXC is indeed better than an encrypted excel file.

>>3761
keepass is nice, i've gotten used to autofilling credentials with the browser addon and it's pretty handy
i also have the vault in a syncthing folder so i can access it through my phone as well

>>3763
>keepass
>syncthing
Oh hey wait, that's pretty much my setup as well! And i think it works great. Having keepass so i only need to remember a single good password, and syncthing so that i can access keepass from my phone, or laptop, is a great combination.

I use security through obscurity!

>>3766
It only works as long as the thing you're "securing" is something no one cares about

I keep all my usernames and passwords unencrypted and in plain text on a piece of paper!

>>3770
I keep mine inside Sanae's panties!

>>3771
anonymous got subsequently hacked now that everyone knew his credentials