* Posts by ste-fu

2 publicly visible posts • joined 23 Oct 2014

Stop resetting your passwords, says UK govt's spy network

ste-fu

They might be right...

Forcing password changes on daily use accounts compromises security, as all the comments here show. Password123! will be accepted almost everywhere. Microsoft *ducks* have published some interesting research recently. Setting a higher minimum length just means that the majority of passwords will be at or just over that length. Their recommendation: ban common passwords prior to hashing.

'Bill Gates swallowing bike on a beach' is ideal password say boffins

ste-fu
Pirate

Passwords are for online security...

I believe Bruce Schneier recommends writing your passwords down and keeping them in your wallet.

Most people only ever lose their wallets once or twice in their life, and even if somebody does find it, you don't keep your user id / email written down in the same place.