Mike Gayner
Diamond Member
- Jan 5, 2007
- 6,175
- 3
- 0
I have approx 30 different personal accounts with 8 different passwords due to different requirements.
I have 10 different work related passwords, all different due to different requirements and frequency of change. Not to mention 4 tokens, 2 of which have PIN requirements.
My system is I have a "code" to break down my password and I write it down with the primer in my head so I know what it is for my personal PWs. But for the work passwords, yea, I fucking write them down.
I have 10 different work related passwords, all different due to different requirements and frequency of change. Not to mention 4 tokens, 2 of which have PIN requirements.
My system is I have a "code" to break down my password and I write it down with the primer in my head so I know what it is for my personal PWs. But for the work passwords, yea, I fucking write them down.
LiuKangBakinPie
Diamond Member
- Jan 31, 2011
- 3,903
- 0
- 0
Can't blame though as a company could find his whole laundry in a torrent file on the internet the next day. One bad protected host exposes all the other systems on that network
Six systems, one-month password life, all out of synch = new password every 5 days. I don't care how smart your system is for coming up with secure, memorable passwords, that rapidly becomes a PITA.
(Worst of all though is when password parsers complain that your password is too long! I can touch type plenty fast, its not particularly long, and you're a computer, if its not too long for me it shouldn't be too long for you!)
(Worst of all though is when password parsers complain that your password is too long! I can touch type plenty fast, its not particularly long, and you're a computer, if its not too long for me it shouldn't be too long for you!)
To bad the phrases the passwords come from are far more secure then what they are creating.
Oh and this seems really appropriate.
LiuKangBakinPie
Diamond Member
- Jan 31, 2011
- 3,903
- 0
- 0
To bad the phrases the passwords come from are far more secure then what they are creating.
Oh and this seems really appropriate.
It's just a example on how to create a secure one. Unless a numpty go out and use the examples but who is that stupid?
12 random digits brute force that quickly
Wyndru
Diamond Member
- Apr 9, 2009
- 7,318
- 4
- 76
Some requirements are just ridiculous. And the password history requirement sucks, bad. We have a citrix system I log into that never lets you use the same password twice, and has the following requirements: at least 1 letter, 1 number, 1 special char, 1 capital and 8 digits long. It can't contain any word from the english language, have a common name in it, and it expires every 30 days.
I feel like a kid writing l33t when I create all my passwords on that server. Yup, I forget them.
I feel like a kid writing l33t when I create all my passwords on that server. Yup, I forget them.
Last edited:
DrPizza
Administrator Elite Member Goat Whisperer
That explains a lot.
Precisely.
hamburger = 9 characters
cheeseburger = 12 characters
Before attempting an aa ab ac ad ae af... aaaab! aaaac! aaaad! aaaae! etc. attack, I'd probably run a dictionary attack first; also a dictionary attack with a number appended to the end of the the word. i.e. hamburger, hamburger1, hamburger2, ironically, if I chose a dictionary of values as a simple common dictionary, I'd get get to cheeseburger before I got to hamburger.
Unless things have changed, at least in the online world without specific requirements, that would succeed with a good 70% of all passwords. There were a few common sites that didn't lock people out after x-number of attempts, and sooooo many people use the same password on many different sites. Heck, there's an easier way - not all sites encrypt their passwords (they weren't encrypted in Fusetalk, if I recall correctly.) And, if I recall correctly, wasn't a major problem with some of the game sites being hacked last year that the unencrypted passwords may have been accessed? (Giving the hackers access to the emails, etc., of many of the users.)edit: since no one else has mentioned it,
*surprise*, not suprise
shortylickens
No Lifer
- Jul 15, 2003
- 80,287
- 17,078
- 136
dabuddha
Lifer
- Apr 10, 2000
- 19,579
- 17
- 81
Password requirements are fucking retarded these days. Up here, it has to be at least 24 characters long, at least 1 upper case letter, 1 lower case letter, 1 number, 1 special character and can't be similar to your past 24 passwords. Has to be changed every 2 months. And that's just one of at least 8 different "systems" we have to memorize username/passwords for.
Yeah fuck that, of course people are going to write em down.
Yeah fuck that, of course people are going to write em down.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 20K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes Discussion Threads
- Started by Tigerick
- Replies: 12K
-
Discussion Speculation: Zen 4 (EPYC 4 "Genoa", Ryzen 7000, etc.)- Started by Vattila
- Replies: 13K
-
Facebook
Twitter