U.S. CitiesCity-Data Forum Index
Go Back   City-Data Forum > General Forums > Science and Technology
 [Register]
Please register to participate in our discussions with 2 million other members - it's free and quick! Some forums can only be seen by registered members. After you create your account, you'll be able to customize options and access all our 15,000 new posts/day with fewer ads.
View detailed profile (Advanced) or search
site with Google Custom Search

Search Forums  (Advanced)
 
Old 08-08-2017, 12:37 PM
 
Location: Old Hippie Heaven
13,164 posts, read 5,099,532 times
Reputation: 6728

Advertisements

The man responsible for most of your password headaches was wrong, and he's sorry

One less thing to obsess about...
Reply With Quote Quick reply to this message

 
Old 08-09-2017, 03:46 AM
 
33,789 posts, read 33,828,788 times
Reputation: 13278
The thing to note here is they are suggesting long passwords that are easier to remember, emphasis on long. Both length and complexity increase security. Also keep in mind if you are using passwords that are familiar to yourself they are also familiar to people who know you, undoubtedly when the X gets into your email account it's because they guessed the password.

While on the topic it's important to use different passwords for important sites like banks. For that reason alone you might as well use a password manager like Keepass and utilize complex passwords.

Using a common password on sites like this one and other forums for example is not much of risk unless you have personal data in PM's for example. Where the risk lies is that this site is not a bank and does not have an army on software engineers securing that data.

  • If the user table in database is obtained one would have a list of associated usernames, emails and encrypted passwords. They will brute force the passwords starting with dictionary attack.
  • If they are able to alter files on the server they could literally script it to send them whatever info they want about the login.
  • This site does not use HTTPS, your login could be compromised if it's intercepted by third party. Someone that has control of public Wi-Fi router for example.
If they obtain the password it's off to your email account to try the password there, perhaps Ebay, Paypal, your bank or whatever. Any site you use like that should have a unique and strong password.


If you do not want to go through the trouble of managing passwords, come up with a formula for creating them. For example suppose an easy to remember number for you is 4196:


4c1i9t6y1


The letters mixed in are the the first four letters of the domain city-data.com... This is simple example and should be a longer.
Reply With Quote Quick reply to this message
 
Old 08-10-2017, 06:29 AM
 
Location: Cary, NC
28,027 posts, read 49,830,868 times
Reputation: 26184
At sites I think I will not access routinely, I just enter nonsense...
P)(*RKNV_)WF-3fj3-vj39=

And use the password reset when I go back...
Reply With Quote Quick reply to this message
 
Old 08-10-2017, 08:32 AM
 
Location: Sector 001
5,559 posts, read 4,714,275 times
Reputation: 6080
I never bought the BS about changing passwords every 3 months. I come up with secure ones and never change them. Its annoying that large corporations go by that 3 month policy.
Reply With Quote Quick reply to this message
 
Old 08-11-2017, 02:06 AM
 
Location: Oregon Coast
1,414 posts, read 420,047 times
Reputation: 1842
Quote:
Originally Posted by stockwiz View Post
I never bought the BS about changing passwords every 3 months. I come up with secure ones and never change them. Its annoying that large corporations go by that 3 month policy.
I especially hate those emails that force you to change your password. "We have noticed a security issue with your account. Log in now and change your password." 50% of the time the email is a scammer fishing for my password. So I have to examine it carefully and determine if the email is legitimate or not. I'm sure those type of emails create more security issues then they solve.
Reply With Quote Quick reply to this message
 
Old 08-11-2017, 07:24 AM
 
10,580 posts, read 15,591,733 times
Reputation: 9947
Quote:
Originally Posted by stockwiz View Post
I never bought the BS about changing passwords every 3 months. I come up with secure ones and never change them. Its annoying that large corporations go by that 3 month policy.
Unique, secure passwords for each site are more effective than changing reused passwords every 3 months
Reply With Quote Quick reply to this message
 
Old 08-17-2017, 07:52 PM
 
Location: Texas
815 posts, read 691,112 times
Reputation: 759
Quote:
Originally Posted by Cloudy Dayz View Post
I especially hate those emails that force you to change your password. "We have noticed a security issue with your account. Log in now and change your password." 50% of the time the email is a scammer fishing for my password. So I have to examine it carefully and determine if the email is legitimate or not. I'm sure those type of emails create more security issues then they solve.
Never let Emails tell you what to do and do not follow the links in them, ever. Go to that site where it's supposed to come from and deal with them there.
Reply With Quote Quick reply to this message
Please register to post and access all features of our very popular forum. It is free and quick. Over $68,000 in prizes has already been given out to active posters on our forum. Additional giveaways are planned.

Detailed information about all U.S. cities, counties, and zip codes on our site: City-data.com.


Reply
Please update this thread with any new information or opinions. This open thread is still read by thousands of people, so we encourage all additional points of view.

Quick Reply
Message:


Over $104,000 in prizes was already given out to active posters on our forum and additional giveaways are planned!

Go Back   City-Data Forum > General Forums > Science and Technology

All times are GMT -6.

2005-2017, Advameg, Inc.

City-Data.com - Archive 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32 - Top