Posted on 10/24/2015 4:56:26 AM PDT by SMGFan
Having trouble coming up with the perfect password for Facebook or Windows 10? You are not alone since many people will resort to easily memorable passwords like “password” or “12345678” so they will not be forgotten. Unfortunately, such easy passwords are also simple to hack, and thus, they are completely insecure. In a related report by the Inquisitr, Bill Gates has long predicted the death of the password, and so, the Windows 10 password system incorporated new technology in order to give conventional passwords a shove off the proverbial cliff.
(Excerpt) Read more at inquisitr.com ...
30 day password expiration is lunacy. Why not 7, or 5 or 2-days? Makes about as much sense.
If I know I’m going to be able to use the password for a while, I will come up with a good 20-30 character phrase that is as secure as a password can be. You’d be amazed at how fast you can enter a password like that after you have typed it a hundred times.
Of course, you also run into systems that wont let you go more than 10 characters or so. Yeah, that’ts a great idea. Not.
What I’d like to see is a system where the strength of your password influences how long you can use it. You would get multipliers for having mixed case, special chars, and numbers. The passord I use for securing my password safe is good enough to use for a year or more.
In that case I better not mention that I don’t use 10 *’s as the stem password but 11 *’s.
Thank you! That just saved me a lot of time! :)
And using that service assumes you have an internet connection, right? ...
Actually, you don't need an internet connection. 1Password stores the encrypted file (series of files actually) on your local machine. If you have multiple machines, smartphones, etc, then it gives you options to use services like iCloud or DropBox to replicate and sync encrypted containers between your systems.
Works nicely for me as it integrates with touch-ID on iPhones so I can access my accounts on websites with the touch of a finger.
You just don't want to forget that one password that actually decrypts the 1Password container, or you are out of luck as there is no backdoor access to open it. This in my mind is actually a good thing. Backdoors on security systems are exploits waiting to happen.
Then add your work environment where you have access to different type of hardware running different types of operating systems, each with its own password rules, some of which are not compatible with the others, so you can’t just use the same password for all.
A few years back I kept a spreadsheet for the several hundred unix servers I had access on, each with a unique, system created password.
Make it too hard and you will end up with folks writing them down.
We spend a lot of our time today trying to hack around the security so we can get our jobs done. Between that and the masking for PCI compliance it is a wonder we can do anything anymore.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.