HomeLatest ThreadsGreatest ThreadsForums & GroupsMy SubscriptionsMy Posts
DU Home » Latest Threads » Forums & Groups » Main » Video & Multimedia (Forum) » 56 days out -- harden pas...

Wed Sep 9, 2020, 12:52 AM

56 days out -- harden passwords

Don't think it can't happen just because it hasn't happened yet.

21 replies, 763 views

Reply to this thread

Back to top Alert abuse

Always highlight: 10 newest replies | Replies posted after I mark a forum
Replies to this discussion thread
Arrow 21 replies Author Time Post
Reply 56 days out -- harden passwords (Original post)
ancianita Sep 9 OP
yonder Sep 9 #1
ancianita Sep 9 #2
BigmanPigman Sep 9 #7
mitch96 Sep 9 #10
Demovictory9 Sep 9 #3
regnaD kciN Sep 9 #4
ancianita Sep 9 #5
fescuerescue Sep 9 #15
ancianita Sep 9 #17
Throck Sep 9 #6
ancianita Sep 9 #11
Sherman A1 Sep 9 #8
ancianita Sep 9 #12
riversedge Sep 9 #9
NurseJackie Sep 9 #13
fescuerescue Sep 9 #14
ancianita Sep 9 #16
Control-Z Sep 9 #18
ancianita Sep 9 #19
brooklynite Sep 9 #20
ancianita Sep 9 #21

Response to ancianita (Original post)

Wed Sep 9, 2020, 01:02 AM

1. Gotta say, I get complacent sometimes. Thanks for the kick in the pants.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to yonder (Reply #1)

Wed Sep 9, 2020, 01:17 AM

2. It's never too late. I always use whole sentences and favorite sayings I never have to write down.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Reply #2)

Wed Sep 9, 2020, 03:43 AM

7. That's a good idea!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Reply #2)

Wed Sep 9, 2020, 05:55 AM

10. I take a familiar name and spell it backwards. Like MIKE... EKIM. A house address number

Forward or backwards, your choice. Caps or no caps.. A few $$ or && signs.. Easy to remember but a bit difficult to crack.. I then make a photo of the pw and put it on two thumb drives... No cloud no internet access to the thumb drives.. OR you could put it on the legacy Mark1 piece of paper, papyrus, goat skin stashed away safe...
YMMV.. VMMY
M

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 02:15 AM

3. Wow

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 02:24 AM

4. I suspect that chart is somewhat unrealistic...

First of all, there's no way anything can be cracked "instantly" if, from the context of the rest of the chart meaning "less than one second." Even if your password is five numbers, it's going to take quite a few tries to get it right, even if you used something obvious like a sequence in order, unless it was '12345'.

And that's my main gripe here: it's based solely on number and type of characters, when it's the content that's important. Frankly, if you do something like combine your two kid's names, if the person trying to hack you knows them, it's going to be a lot easier to crack 'JohnMary' than it would be nonsense text like 'bKPhwTcD'. The date you got married (say, 'June17,1987') is probably going to be quite easy for a hacker who can find out that much about you, even if, according to the chart, it should take 400 years. The big problem is that, no matter how many characters of which type you use, it's a trade-off between coming up with something the proverbial hacker wouldn't think of, while still being something you remember and so don't have to write down (which creates its own security issues). Probably the best solution for coming up with hard-to-guess but easy-to-use passwords is to use a password manager app, but that assumes you can find one that will stay in business without getting hacked itself, and that you can still can create a "master password" for the app that you can easily remember but no one else will be able to guess...which puts you right back at square one.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to regnaD kciN (Reply #4)

Wed Sep 9, 2020, 02:30 AM

5. Hackers aren't kids in basements. They're people with high speed nets, databases and AI.

They're even machine programs.

Kids names? Friends? Life dates? Password manager app? Okay.

While I get your general meaning, and no chart is complete, it's still a handy warning.

I thought it might help remind people to tighten up. But hey, you can take it or leave it.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Reply #5)

Wed Sep 9, 2020, 09:15 AM

15. Hackers all have day jobs too

This infantilzing of hackers is bad.

When hackers are caught. They almost always have a high-tech job in a trusted company.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to fescuerescue (Reply #15)

Wed Sep 9, 2020, 09:22 AM

17. Yep.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 03:00 AM

6. Trumpisanasshole123%$#

Most over used password this past 4 years.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Throck (Reply #6)

Wed Sep 9, 2020, 08:55 AM

11. Yeah, that's an easy hack right there.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 03:46 AM

8. Certainly good advice

I use an ascending level of password security. For sites that are unimportant in the overall scheme of things such a shopping site or a hobby forum, I will visit only once the password is pretty mild. Heading towards sites that are more important they become more complex.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Sherman A1 (Reply #8)

Wed Sep 9, 2020, 08:56 AM

12. Good system. And never use the same password twice. Use whole sentences with punctuation

caps, numbers and stuff like that.

Great!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 05:29 AM

9. geez. I do need to change some.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 09:12 AM

13. For the most sensitive passwords, I allow Avast to auto-generate them for me...

... and auto-remember them for me as well (as long as I'm logged-in on my home computer and as long as I'm using Firefox or Chrome.)

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 09:14 AM

14. MOST importantly - don't reuse passwords

Your chart is accurate, but that is NOT how most hacks happen.

Most hacks happen because of a weakness in the code which lets the password database be stolen.

Since most people reuse passwords, you get one obscure password database, you suddenly have their GMAIL and bank account info too.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to fescuerescue (Reply #14)

Wed Sep 9, 2020, 09:21 AM

16. Absolutely. I don't think the chart says anything about how hacks happen.

Trackers can pick up enough browsing clues. Then there's planted malware in ads.

There's a site that tells you if you've been compromised, but it's probably a hack itself.

Most people need to smarten up.


The best security starts with smart password creation, and no matter how long and clever, never twice. Never keep passwords anywhere digitally.

I've refused to bank or pay bills electronically, but just keep a paper trail. So far, so good.

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 02:05 PM

18. If I add any 2 characters/numbers/letters

to my most secure password it will take years to figure it out. Woohoo!

Thanks for the OP, ancianita!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to Control-Z (Reply #18)

Wed Sep 9, 2020, 02:10 PM

19. THIS!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to ancianita (Original post)

Wed Sep 9, 2020, 02:19 PM

20. What does Election Day have to do with personal passwords?

Reply to this post

Back to top Alert abuse Link here Permalink


Response to brooklynite (Reply #20)

Wed Sep 9, 2020, 02:23 PM

21. Election Day? I've no idea. Why do you ask?

Reply to this post

Back to top Alert abuse Link here Permalink

Reply to this thread