Passwords That Are Simple — and Safe(?) 563
TravisTR submitted a story that talks about simpler passwords. I don't think anyone disagrees that having elaborate rules with 20 char passwords requiring mixed cases and symbols and requiring them to change frequently is a pain, but I'm not sure that allowing unique but simpler passwords is a better idea.
Write it down (Score:5, Funny)
My favorite (Score:4, Funny)
Re:My favorite (Score:2, Funny)
Re:SImple non-dictionary passwords (Score:5, Funny)
Bad password. Too common.
Re:changing passwords frequently makes no sense (Score:4, Funny)
Re:Simple (Score:1, Funny)
Re:Compuserv had it right (Score:4, Funny)
12 billion sounds like something a computer could brute force these days, although it depends a lot on the algorithm.
This is also why on Windows you want to have a 15+ character password. For 14 characters and below, Windows stores the passwords as two 7 byte fields for backwards compatibility purposes (darn Windows 95/98!). This is bad because a 7 byte field with just lowercase letters has only 8,031,810,176 combinations, 16 million if you use the full 14 characters, but most people have 8 character passwords for historical reasons (DES salt length of all things), and that last character is basically worthless. It's a bit of a pain, but 15 character passwords can be made reasonable (assuming your security policy doesn't require 25% punctuation or something) and will be stored a much more secure way on Windows hosts.
Best password ever. (Score:5, Funny)
Re:Simple (Score:2, Funny)
Re:deh. (Score:3, Funny)
By any chance, is "deh" your password?
Re:Best password ever. (Score:2, Funny)
Nah, your password really is "hunter2".