Twelve-Character Passwords
Sep 24, 2019 14:56:17 #
Anhanga Brasil
Loc: Cabo Frio - Brazil
johngault007 wrote:
This is probably a candidate for a separate discussion. But in short, malware doesn't have to be selective, grab everything and figure out what's important and what's not later. Or filters that discard audio/visual files and only grab text, etc....
Yes, it would. But include me out of it because I have not written
a single line of code for at least 25 years.
Sep 24, 2019 14:57:59 #
Anhanga Brasil wrote:
Yes, it would. But include me out of it because I have not written
a single line of code for at least 25 years.
a single line of code for at least 25 years.
Me either (not 25 years, but several years).
Sep 24, 2019 21:44:19 #
Sep 25, 2019 08:58:58 #
dpfoto
Loc: Cape Coral, FL
They said the blonde's password needed to have 8 characters and 1 capitol. Her new password is:
mickeyminniedonalddaisygoofyplutoelsaolafwashington
mickeyminniedonalddaisygoofyplutoelsaolafwashington
Sep 25, 2019 09:05:05 #
During a recent password audit by Microsoft & Google,
it was found that a blonde was using the following password:
"MickeyMinniePlutoHueyLouieDeweyDonaldGoofySacramento"
When asked why she had such a long password, she said
she was told that it had to be at least 8 characters
long and include at least one capital.
it was found that a blonde was using the following password:
"MickeyMinniePlutoHueyLouieDeweyDonaldGoofySacramento"
When asked why she had such a long password, she said
she was told that it had to be at least 8 characters
long and include at least one capital.
Sep 25, 2019 09:39:19 #
controversy
Loc: Wuhan, China
jerryc41 wrote:
Want to be more secure online? Use passwords with twelve characters.
https://askleo.com/how_do_i_choose_a_good_password/?awt_l=9nnPg&awt_m=Jj6fbPjsYpdfbL&utm_source=newsletter&utm_campaign=20190924&utm_medium=email&utm_content=featured
https://askleo.com/how_do_i_choose_a_good_password/?awt_l=9nnPg&awt_m=Jj6fbPjsYpdfbL&utm_source=newsletter&utm_campaign=20190924&utm_medium=email&utm_content=featured
The best security is to use two-factor authentication. When using it, simply knowing/cracking your password is not enough for anyone to access your account.
http://www.pcmag.com/feature/358289/two-factor-authentication-who-has-it-and-how-to-set-it-up
Sep 25, 2019 10:02:01 #
I was asked for an 8 character password so I chose snow white and the 7 dwarfs
Sep 25, 2019 11:00:44 #
Making your own passwords is so last century. Use a good password manager like Dashlane (my favorite) or Lastpass. We've had this thread before for those interested in ditching the most insecure aspect of using the internet, i.e. passwords used on multiple sites, easy to remember passwords, etc.
Sep 25, 2019 12:06:43 #
Longshadow wrote:
Good idea.
As long as the key logger isn't seeing EVERYTHING you type, but it will make it harder for them.
As long as the key logger isn't seeing EVERYTHING you type, but it will make it harder for them.
Type out a file of your passwords, WHILE OFF LINE (or using a known clean computer off line), using MS Wordpad or Notepad.
Make a screen display of the file's content into a image (jpg, gif, tiff, bmp) file. Save this image in your personal space only if others use the computer.
Otherwise anyplace other than in root C:
Delete the content of the Wordpad or Notepad file until the file contains no data. Do not save.
Place an icon of the image file on your desk top using a 'shortcut'.
Now you can refer to it as needed to look up your passwords. You can not copy and paste from it but, at least you can look up any password.
Do not name the image file: 'MY PASSWORDS'! Just name it: 'image0.jpg' or '1.jpg'.
Sep 25, 2019 12:19:29 #
HOHIMER wrote:
Type out a file of your passwords, WHILE OFF LINE ... (show quote)
Yeah, not secure at all, sorry. It's just as easy to copy images as it is text files from anywhere on a computer if you have escalated privileges. In fact, the Desktop is one of the first places one may look if they are snooping around or writing scripts to pull data along with most of C:\Users\(insert username).
The safest (not bulletproof) way to store passwords is in a database manager like mentioned above. While I am not familiar with those, Keepass is a multiple platform application that encrypts the database with a variety of encryption methods (you choose). You can either use single factor authentication (password OR key file), or multi-factor (password AND keyfile) authentication to open it. Multi-factor authentication is always preferred.
But, the main question was 12 character password strength, which in today's computing environment, isn't as strong as long passphrases.
Sep 25, 2019 12:25:45 #
My favorite password is:
MickeyMinnieDonaldDaisyHeweyDeweyLouisPlutoTallahassee
It's eight characters and a Capital.
MickeyMinnieDonaldDaisyHeweyDeweyLouisPlutoTallahassee
It's eight characters and a Capital.
Sep 25, 2019 14:47:13 #
johngault007 wrote:
Yeah, not secure at all, sorry. It's just as easy... (show quote)
Would it be safer if the image file were not placed on the Desktop but was placed on a USB flash drive which was attached ONLY when one needed to look up a P/W?
Sep 25, 2019 15:04:55 #
HOHIMER wrote:
Would it be safer if the image file were not placed on the Desktop but was placed on a USB flash drive which was attached ONLY when one needed to look up a P/W?
For the average user, and the knowledge that most sophisticated attacks probably wouldn't happen to them, sure. But, network security is my current gig (past 25 years or so), and I believe and currently write curriculum to best possible practices.
I wouldn't personally. I advocate and use a database manager (keepass) because, no matter who gets the database, they need both my passphrase and a keyfile to open it. Plus, like mentioned before, you can auto-generate crazy long passwords that you don't have to remember.
Sep 25, 2019 15:30:54 #
My first try gave me "1 Trillion years", second was 19 characters resulting in "552 quadrillion years". I can live with that!
Sep 25, 2019 18:52:17 #
Back in the XP days I made my password to log on "incorrect". That way when I used the wro g one XP would put up a balloon that said "your password is incorrect". Never had to worry about remembering it.
If you want to reply, then register here. Registration is free and your account is created instantly, so you can post right away.