Main > Everything Else
Password requirements are getting ridiculous
punxrus:
Random password generators are good for people like you. They do all the hard work for you. It sucks that people are making so many requirements for passwords, but it's better to be safe than sorry. Especially if you are prone to using the same password for everything...
boykster:
There's the flipside of this issue too, password management by the application and database. a complex password only protects your account from brute force attacks thru the interface, but does nothing to protect your login from a backdoor compromise if the system is storing your password in plaintext or a simple 2-way hash.
What good is an uber complex random password if a hacker simply dumps the user table and your pass is there in plaintext :dunno
leapinlew:
I agree. Passwords requirements are becoming a pain. Especially because some apps won't accept more than 8 characters, while others want more than 8 characters, some won't accept numbers, and some force numbers. 1 form of authentication is the culprit here. Security can be accomplished by using any of these 3 metrics:
* Something you know - such as a password
* Something you have - such as a magnetic card or fob
* Something you are - some form of biometrics
Relying ONLY on one is the real issue. You should be forced to have 2 of the 3 and then we could deal away with some of the more complex password requirements.
shmokes:
--- Quote from: punxrus on September 18, 2008, 11:59:24 am ---Random password generators are good for people like you. They do all the hard work for you. It sucks that people are making so many requirements for passwords, but it's better to be safe than sorry. Especially if you are prone to using the same password for everything...
--- End quote ---
I don't have a problem generating the passwords. My problem is remembering them.
leapinlew:
--- Quote from: shmokes on September 18, 2008, 12:26:51 pm ---
--- Quote from: punxrus on September 18, 2008, 11:59:24 am ---Random password generators are good for people like you. They do all the hard work for you. It sucks that people are making so many requirements for passwords, but it's better to be safe than sorry. Especially if you are prone to using the same password for everything...
--- End quote ---
I don't have a problem generating the passwords. My problem is remembering them.
--- End quote ---
Do yourself a favor and don't work for any government institutions. Your not allowed to write them down and you'll need to remember a ton of them...
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version