The Password is …
Starting today we were required to update one of our passwords to a 12 character monstrosity that includes at least one of each of the following:
1. Capital letter
2. Number
3. Symbol (ie, @#$&!)
And the reuse of previously used passwords is restricted to waiting until the 21st round of passwords. Oh, and we’ll now be required to change our passwords in 60 days instead of 90 days.
I have passwords for more than a dozen systems and some of those systems have two levels of passwords. What makes them think that they’re actually increasing security by making it so much harder to remember all of the passwords? Because at some point a cheat sheet is required just to avoid calling the help desk several times daily to get your passwords unlocked because you entered them incorrectly too many times.
I thought that eight with a number was bad. I will remember that the next time I want to complain about a password.
Posted by Michael on 12/01/08 at 07:50 PMHint: Use Bible verse references as passwords. 1Timothy3-15 would work, as would any longer named book. Be consistent, using “-” instead of the “:” and you’ll find it easier to recall. Now you can take your Bible, put a bookmark on the page with the reference, put the name of the system on the bookmark and you have an instant password vault.
Posted by on 12/01/08 at 08:14 PMThe Bible verse is a good suggestion. Alternatively, if they’ll let you install software on your machine, you can download something like Password Safe, then you only need to remember one password (well 2, one for logging in to your normal pc and then 1 for the safe).
Posted by beth on 12/01/08 at 09:35 PM“What makes them think that they’re actually increasing security by making it so much harder to remember all of the passwords?”
Harder to remember = Harder to guess
Sorry, it’s the IT Professional in me.
Posted by on 12/02/08 at 12:47 AMExcept that “guessing” isn’t how most hacking is done...a password cracker is the tool of choice. All that length and special characters do is make it take longer for the software to run through the combinatorics. BUT that is where the power is.
according to this neato tool:
mandylionlabs.com/ PRCCalc/ BruteForceCalc.htm
To crack 1Timothy3-15, would take about 74,802 hours of computer time.Dictionary lookup attacks only take a few seconds and retrieve about 25% of passwords.
Posted by Lynellen on 12/02/08 at 10:34 AMI’ll try the Bible verse idea.
I’m not allowed to download anything to my computer.
Yes, I understand hard to remember means harder to crack. Still frustrating, though.
Posted by jen on 12/02/08 at 12:10 PMThe Bible verse idea makes sense. What I tended to do was keypad combos where all you have to remember is the starting point. So, !Qazxsw23edc could be one. Upon change, start with the 2 instead of the 1: @Wsxcde34rfv. Always do the symbol and capital as the first two.
Posted by James Joyner on 12/02/08 at 12:29 PMHmmm. That’s an interesting idea. I’ll consider doing that.
Posted by jen on 12/02/08 at 12:50 PMMy policy for handling the change is that on days I can’t remember my password I’m just going to go home.
Posted by Robbo on 12/02/08 at 01:58 PMI use the expression O2B~ followed by the four-character ICAO code for the airport near a place I would like to be (at).
O2B~kcho (Charlottesville) for example.
When I need an updated password, I just pick a new airport.
Posted by on 12/02/08 at 03:24 PMYou could make it easy, but use numbers and symbols in it....
like L1ntf!ni@lMu$!ng. Those are hard to break!
Posted by Janie on 12/02/08 at 03:48 PMGood ideas. I especially like Robbo’s idea.
For this iteration I used the previous password and just added 4 characters to it. So far, so good. I get 58 more days with it.
Posted by jen on 12/02/08 at 04:53 PM
You must answer the captcha question in order for your comment to post. If you don't know the answer, let me know. I may or may not give it to you.
I reserve the right to delete and/or edit objectionable comments. Be nice and have fun!
Next entry: Movies: Get Smart and Miss Potter
Previous entry: Stuff
How I came to be Lintefiniel Musing
Bead Wedding Bouquet Instructions
Whiny Complaints - the original p-blog
Harkening To ...
"For I know the plans I have for you," declares the Lord, "plans to prosper you and not to harm you, plans to give you hope and a future. Then you will call upon me and come and pray to me, and I will listen to you. You will seek me and find me when you seek me with all your heart." -- Jeremiah 29:11-13
Ephesians 2:10: For we are God's workmanship, created in Christ Jesus to do good works, which God prepared in advance for us to do.
international justice mission
usa freedom corps
freedom alliance
soldier ride
fisher house
feed the children
salvation army
operation blessing international
samaritan's purse
young life
Questions? Email Me:
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005
- August 2005
- July 2005
- June 2005
- May 2005
- April 2005
- March 2005
- February 2005
- January 2005
- December 2004
- November 2004
- October 2004
- September 2004
- August 2004
- July 2004
- June 2004
- May 2004
- April 2004
- March 2004
- February 2004
- January 2004
- December 2003
- November 2003
- October 2003
- September 2003
- August 2003
- July 2003
- June 2003
- May 2003
- Category Archives
Gmail Icon Generator
Masthead Fonts from:
Who Fonted?
or
fontdinerdotcom
Masthead Graphic from:
FreeFoto.com
This work is licensed under a Creative Commons License.