1. Home
  2. Home Repair
  3. OT How strong need my password be?
  4. Page 2

OT How strong need my password be?

I agree with your logic regarding websites where if they get in they really can't do anything that's harmful or destructive to you. Example of that would be some free website, say for BMW enthusiasts. Amazon or similar that has your credit card on file, they could change the ship to address, the email address, the password, and then order a lot of stuff. You previously cited your electric bill as an example. If all you can do there is pay the bill, then I'd agree. But some now have the capability to also enter requests to terminate service. While a hacker can't profit from that, some teenage hacker might think it's a funny joke.

I start to get annoyed when websites impose ridiculous pwd rules, like insisting that you not only use letters and numbers, but also that it has to have upper and lower case. I find that very annoying, because I can remember a password with a couple digits added, but remembering which letters have to be caps for the few that require that is pushing it.

And how long the pwd is, isn't a very good metric of how secure it is. For example "password" is 8 characters, but obviously a really bad choice compared to "xugj". One bad practice is to use the same pwd for all websites. Using the same one for a financial institution as you use for that BMW enthusiast website, that could be hosted in someone's bedroom, isn't a good idea. You don't need a different one for each place, but using some logic, having a few, keeping them segregated is a good idea.

Reply to
trader_4
Loading thread data ...

I'll admit, I never thought I'd see ransomware exercised on alt home repair.

Reply to
Stormin Mormon

We had a tech support guy who was clueless. His co-workers took delight in changing his wallpaper to ferrets. I don't think he ever figured out how to change it or secure his machine.

Reply to
rbowman

True. That's why I'm afraid to make enemies -- which is why I don't use my full name online.

It used to be that all you needed to do to cancel service for phone or electric or gas was call up and cancel it, but too many vindictive people and pranksters cancelled other people's service, so now you have to prove who you are to do most things.

Exactly, and when it's one of those sites where no one can hurt you anyhow, it is so ridiculous. I write everything down but then I try to hide it from hackers, so it's a pain to look for one and I prefer to remember them. But then they want me to change it, and I can rarely remember the replacement.

Definitely not.

I'm sorry I didn't realize that when I started. I took what they said seriously. I suppose it's not too late to start using the same password and userid for those sites where I can't be hurt, but my compulsive nature wants to keep using different ones because t h at's the way I've been doing it.

I let Firefox remember all the userids and passwords for the ones that don't involve money, so that helps, but when I switched computers, it wasn't possible to copy everything over. So I'm glad I'd written it in a file too.

Reply to
Micky

I don't remember it asking for my zipcode, but I'm usually willing to give that out. There are a lot of people here.

My friend has a real FB account and one with a phony name. I only have the latter. When FB counts the number enrolled, I wouldn't be surprised if 20% are phony.

Darn right.

Reply to
Micky

u I have one that I started with and use for many things, but another is more secure and longer. I use variations as some sites require a capital letter. Some require a symbol too and it is easily done. With variations of a theme I can usually guess on the second try.

Reply to
Ed Pawlowski

Reply to
Mark Storkamp

rbowman posted for all of us...

WE had kids that would do a screen capture and use that as wallpaper. Clicking would lead to frustration... Took care of that.

Reply to
Tekkie®
[snip]

I've heard about this one too. It sounds like a good idea. Still some sites insist on things like uppercase AND lowercase AND digits. Maybe you could use camel case and a number that means something to you, like:

7TroutLineSwazeyWater

if you caught 7 trout there.

Reply to
Mark Lloyd
[snip]

for uppercase/lowercase, sometimes it's appropriate (like Phoenix Arizona), otherwise I'd want to use camel case (like in JavaScript) where the first letter of a word is capitalized. You shouldn't have to use capitals at random places in a word (like hElLO tHErE). Examples:

PhoenixArizonacity grayElephantEating GrayElephantEating HendersonCountyGMO

(they just happened to be the same length). If you need digits, put a familiar wherever makes most sense to you.

[snip]
Reply to
Mark Lloyd

*** ATTENTION: VIRUS ****

The following virus requires your cooperation:

Please forward this to everyone you know, then delete all your personal data (don't forget backups).

Failure to follow these instructions may have severe consequences.

Reply to
hah
[snip]

There's Firefox sync, which copies your passwords to all your computers. You're unlikely to lose them then, but it's still a good idea to have then written down too.

Reply to
Mark Lloyd

That's a good idea.

When it says I have to use a capital, I use only one and make it the first letter. I bet most people do it that way so it adds little to my security. I DON'T CARE

Reply to
Micky

Micky wrote in news: snipped-for-privacy@4ax.com:

Cancel your service, maybe?

[...]

Not now, perhaps. What about in the future? Anyway, even if there's nothing to be embarrassed about, it's still nobody else's business.

And it does have marketing value.

Because that's about #3 or #4 on the list of things that someone would use, trying to guess your password.

Reply to
Doug Miller

HomeOwnersHub website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.