During a recent password audit, it was found that a
blonde was using the following password:
When asked why she had such a long password, she said
she was told that it had to be at least 8 characters
long and include at least one capital.
FTC Publishing - Sound Effects for Multimedia
Powered by www.Mp3Olimp.net
Seriously, I'm terrible at passwords.
Thanks for the advice, Joan. I just read an article a few days ago about this very topic.
At my job, for security reasons, I am required to change my work-related password every three months. This can be quite a challenge. It must include both letters and numbers, both upper and lower case, must not include any part of my name, and must not be similar to my previous password. I rack my brain every three months trying to come up with something inventive that is easy to remember and which follows all the specifications.
The easy to remember part is the hardest. I tried an algorithm to generate the pseudogibberish, then forgot what it was.
Interesting article Carl. I'm not the sharpest tool in the shed, but I just have to shake my head when I see passwords like "password" and "1234567".
Oh! Carl and Spud, life is getting too complicated. Have you found an easy way to create new ones Carl? MickeyMinniePlutoHueyDeweyDonaldGoofySacramento makes as much sense as any. I wonder if one is any safer using foreign words with random numbers and random capital letters?
Thanks for the article, Carl; I am surprised at the most common ones. I though we all knew to be more clever in creating them.
A year ago I found an interesting cheat sheet for good passwords that appears to be secure. You can print it out and carry it with you. I've not tried it yet, but it looks good. My brain has had enough for today, so I'll try to find the site I found it on tomorrow.
I use long random passwords. I don't try to remember most of them, but keep a list of them in a file on my iMac computer and once in a while print it out and keep it in my safe. Does anyone know if I'm in much danger of someone gaining access to my file?
Two things I need to improve on are using a different password for everything, and changing my passwords more often.
I forgot you had an iMac Spud. I share your need to improve password management.
Definitely, anything connected to your money or to your email should have its own, unique password. (Email access can unlock other things, if "you" "forget" a password.) Sites like A|N and Facebook are important too: I really wouldn't want someone to delete my stuff, or lose friends and influence people by posting crap in my name.
But passwords for such things as reading newspaper articles aren't a big deal.
A good long memorable original phrase, or a password derived from one, is a lot easier to remember (and harder to guess) than a word or two with digit or symbol substitutions -- "was that a 0 or an O"? Password-guessing programs have begun to include such s!mple variati0ns in their attacks.
This xkcd cartoon has sparked debate, but there's no question that we can do better than "training people to use passwords that are hard for humans to remember but easy for computers to guess."
(And here's a cartoon explanation of the dictionary (i.e. word list) attack.)
(And Spud, thanks for the laugh about the "characters" and "capital" in the password!)