Trixology

General Category => General Computing/Macintosh => Topic started by: xairbusdriver on August 16, 2017, 05:12:18 PM

Title: Password creation method revised?
Post by: xairbusdriver on August 16, 2017, 05:12:18 PM

Quote

When users change their passwords every 90 days, they often aren't dramatically changing the password, Grassi says.

"I'm pretty sure you're not changing your entire password; you're shifting one character," he says. "Everyone does that, and the bad guys know that."

Well, they do now!! Thanks a lot Mr. Grassi! [banghead] Guess I'll have to start changing two letters!!! [rolleyes2]

The new Guidelines are published here: https://pages.nist.gov/800-63-3/sp800-63b.htm (http://"https://pages.nist.gov/800-63-3/sp800-63b.html") CAUTION! Reading this manual will cause severe eyelid drooping and may cause neck injury from sleep induced head falling!! Please have a responsible adult carefully watch you for signs of boredom!!

No responsible adult available? How about reading a report in a much shorter and sixth grade English: All-Tech Considered story (http://www.npr.org/sections/alltechconsidered/2017/08/14/543434808/forget-tough-passwords-new-guidelines-make-it-simple)

I wondered why this 'news' seemed a bit late, I'd swear I'd read about it earlier this year. This article explains why it's getting some attention, again:?Much of what I did I now regret,? [former NIST manager Bill Burr] the now-retired 72-year-old told The Wall Street Journal. (http://www.thewhir.com/web-hosting-news/what-does-the-ideal-password-look-like)

For those who prefer graphical guides, I offer this: Password Strength (https://xkcd.com/936/)

With my limited vocabulary and decreasing memory cells, I'm sticking with my password manager! But it wouldn't hurt to start creating multi-word pass phrases instead of the random characters it usually offers. ThU32:-)

Title: Re: Password creation method revised?
Post by: TechnoMonkey on August 17, 2017, 02:36:20 AM

Your All-Tech considered story link was a bit in err.

http://www.npr.org/sections/alltechconsidered/2017/08/14/543434808/forget-tough-passwords-new-guidelines-make-it-simple

Title: Re: Password creation method revised?
Post by: xairbusdriver on August 17, 2017, 03:33:37 AM

Thanks, I corrected it.

Title: Re: Password creation method revised?
Post by: Blicj11 on August 25, 2017, 03:44:11 AM

Everyone should use a password manager. There are at least two really good ones: LastPass and 1Pass. Or you could just write them down on a piece of paper and keep it next to your computer like someone to whom I am married but should not identify by name, and whom I dearly love.

Title: Re: Password creation method revised?
Post by: TechnoMonkey on August 25, 2017, 09:19:00 AM

I use last pass for everything but my financial passwords.  I do not trust anyone with those.

Title: Re: Password creation method revised?
Post by: Steve on August 25, 2017, 02:56:24 PM

Quote from: Blicj11 on August 25, 2017, 03:44:11 AM

Or you could just write them down on a piece of paper and keep it next to your computer like someone to whom I am married but should not identify by name, and whom I dearly love.

I met that person last year. And you met one who matches that exact description, despite having 1Password on her computer...

Title: Re: Password creation method revised?
Post by: Blicj11 on August 25, 2017, 03:10:41 PM

Hahahaha. We were both in good company that day.

Title: Re: Password creation method revised?
Post by: Steve on August 26, 2017, 03:51:06 PM

Quote from: Blicj11 on August 25, 2017, 03:10:41 PM

Hahahaha. We were both in good company that day.

(https://media.giphy.com/media/ROQ3H1RlW78OY/giphy.gif)

Title: Psswd Mngr
Post by: dfw_pilot on August 28, 2017, 06:00:12 AM

Another vote for 1Password. Strong passwords made easy.