The GOOD news is, this makes life much harder for hackers.
The bad news is, I’m betting you get a LOT of calls from people who either can’t remember their passwords or kept trying to enter their passwords and got characters wrong and then got locked out.
Either that or they write down their passwords and keep them on top of their desks… which kinda defeats the purpose.
I’ve been sitting here for 5 minutes trying to figure out what “let mein” means. Figured it was something in German. I think I need to go eat dinner.
Couldn’t we just execute hackers? That would be a lot simpler.
What’s hilarious is that | passwordpassword oink | is far more secure than | %5yZ~dew |, and probably [del]not appreciably slower[/del] much faster to type, but we keep getting pointed toward passwords that look like the latter.
I’m surprised “swordfish” isn’t on the list. I guess now people don’t appreciate the classics.
Even my low-security password (the one I use for accounts that shouldn’t need a password at all) isn’t on that list. No, I’m still not going to tell you what it is, but someone who knows me well enough would probably have a decent chance of (eventually) guessing it, and any of the standard cracking tools would get it fairly quickly.
For my bank password, I didn’t actually set any rules for what it “needed”, but I rolled dice for every character, choosing uniformly from the set of lower-case, upper-case, digits, and shifted digits ( !@#$ etc). Naturally, this gave me a password that would satisfy most such requirements anyway.
The worst was for one I had to make recently-- I kept on trying different passwords, and kept on getting the error message “Your password does not comply with length and/or complexity requirements”, without ever saying what those length and/or complexity requirements were. I got up to 20 characters, including multiples of all four categories of characters, and it still gave me the same error message. It turns out, though, that a password consisting of exactly eight lower-case letters and one digit worked. My passwords were apparently being rejected for being too secure.
One of my coworkers made barcodes of his network and business database passwords and taped them below the keyboard on his laptop. He doesn’t seem worried that any of the rest of us can get into it; he just requested that we not send anything too outrageous from his email account.
I use things like lines from a poem or novel or speech, taking the first or last letters of the words and capitalizing or throwing in numbers or special characters at random. This gives me fairly hard-to-crack passwords that I can remember. This is for at work; at home I use an encrypted password vault.
This is a recipe for passwords on sticky notes.
Yessirree. One private joke at our house is that “Swordfish” is the password to get in the front door. Many of our friends know it and use it.
My Dad’s accounts were recently hacked, and the first thing he said to me was, “Well, they all have the same password I’ve been using for years”. :smack:
That’s amazing! I have the same combination on my luggage!
That was my first thought:
“I bet his users write those down on post-its and stick them to their monitors.”
From Hell’s heart (and my elderly loved one’s various devices) I stab at thee!
I use KeePass and generate semi-random passwords. Typically they’re variations on the consonant-vowel-consonant-vowel-consonant system from old commercial telegraph codes (which generates non-words that have enough structure to be memorizable for a few seconds and accurately transcribed) with one or two random digits (2-9) and a special symbol.
The only password I actually have to remember is the one for the master database, and that consists of a fairly long acronym for a phrase I know that almost certainly (Google searches on fragments thereof came up empty) doesn’t appear verbatim in any book, movie, etc.
Now you’ve got me hungry too – how does let mein compare to General Tso’s chicken or stir-fry beef?
Were there any rules defining which color of sticky note to write it on?
EDIT: Ninja sticky note found on my monitor…
For 30+ years, I have used a vowel substitution of a nonsense word from a comic strip.
It is neither a word in any known (to me) language nor a proper noun.
Another password series is based on that street address drilled into my 8 yr old brain by a Mother certain I would get lost - wandering as I did as far a six blocks from home.
(yes, I know - a modern mother allowing an 8 yr old to wander the neighborhood with his friends would be arrested for neglect/endangerment. Poor kids.)
This. My password is pretty obscure (dead language - not Latin or Slavonic - with numbers and capitals mixed in), but I’ve used some variant of it for the better part of a decade. I do switch it up for my bank account, though.