Forum - Your Password is Too Damn Short
News Fetcher
Joined: Oct 24 2009
Last Active: Never/Not tracked
Total Active: Never/Not tracked
Timezone: GMT+ -7
124242 posts
Last Page Viewed:
Post 115313       April 23 '15 at 03:15 PM
From Coding Horror:
I'm a little tired of writing about passwords. But like taxes, email and pinkeye, they're not going away any time soon. Here's what I know to be true, and backed up by plenty of empirical data:

No matter what you tell them, users will always choose simple passwords.

No matter
Defender of the Universe Z-R0E
The Z-g0d
Z-R0E's AV
Defender of the Universe Defender of the Universe
@Z StarLeague 3 Second Place
@Z's Creator
Joined: Mar 26 2003
Last Active: Apr 02 16
Total Active: 733h 51m 54s
Timezone: GMT+ -8
3651 posts
Last Page Viewed:
The Z-g0d
Z-R0E's AV
Post 115316       April 23 '15 at 04:55 PM
Good read, and it convinced me to make some changes when @Zv6 eventually gets up and running.

That grc.com page was pretty eye-opening too.

I'm really curious as to how Blizzard stores their users' passwords, as it's case-insensitive.
Decepticon Keii
Spending Billions to Destroy 1 Robot Boy
Keii's AV
Decepticon Decepticon
Joined: Mar 26 2003
Last Active: Apr 28 15
Total Active: 346h 39m 30s
Timezone: GMT+ -5
2643 posts
Last Page Viewed:
News
Spending Billions to Destroy 1 Robot Boy
Keii's AV
Post 115354       April 24 '15 at 04:46 PM
I'm just really sick of passwords in general.
The rule is: Don't reuse the same password; Keep passwords long and complex.
And yet every single website on the internet or company computer resource requires a password.

These two things cannot coexist. They are mutually exclusive. You cannot have long and complex passwords and require that users use trillions of them.
Defender of the Universe Z-R0E
The Z-g0d
Z-R0E's AV
Defender of the Universe Defender of the Universe
@Z StarLeague 3 Second Place
@Z's Creator
Joined: Mar 26 2003
Last Active: Apr 02 16
Total Active: 733h 51m 54s
Timezone: GMT+ -8
3651 posts
Last Page Viewed:
The Z-g0d
Z-R0E's AV
Post 115356       April 24 '15 at 06:58 PM
That goes back to the idea of an internet passport, logging on to sites using your google/facebook/twitter/oauth account. I know I plan to support Google and Oauth with @Zv6. More websites need to, especially smaller ones.