|
Which would be not to register at every obscure website that asks nicely and keeping the number of passwords you have to maintain and remember within certain limits.
On top of that I use different mail addresses for every place I register. As soon as I start getting unwanted mails, I know who to thank for that and can get rid of that account, the mail address and also the password.
The language is JavaScript. that of Mordor, which I will not utter here
This is Javascript. If you put big wheels and a racing stripe on a golf cart, it's still a f***ing golf cart.
"I don't know, extraterrestrial?"
"You mean like from space?"
"No, from Canada."
If software development were a circus, we would all be the clowns.
|
|
|
|
|
Having my own mail domain I can have as many email addresses on that domain as I can make up so if I sign up for xyzzy.com I create an email xyzzy@blab... so when the junk mail starts arriving to that address I know who sent/sold it. I have a catchall address that picks up all these temporary addresses and junks all of them after storage for a month. This gives me a chance to review them if I want to and keeps my real inbox clear. I don't even use my own mail domain for my own email anymore, just forwarding it to my gmail account.
- I would love to change the world, but they won’t give me the source code.
|
|
|
|
|
Yes and when the mail address is compromised, you also better regard the password as compromised.
The language is JavaScript. that of Mordor, which I will not utter here
This is Javascript. If you put big wheels and a racing stripe on a golf cart, it's still a f***ing golf cart.
"I don't know, extraterrestrial?"
"You mean like from space?"
"No, from Canada."
If software development were a circus, we would all be the clowns.
|
|
|
|
|
I use my email address, in most case I don't give a rats ass for suggested "at lease one character of sh*t", I just press password reset button. well codeproject gives me a random password within few seconds
I do not fear of failure. I fear of giving up out of frustration.
|
|
|
|
|
Hi,
I use something similar to 'hierarchical protection domains[^]' so that unimportant sites get the generic spam password... higher level unimportant accounts get into the password rotation... e-mail accounts and other semi-important accounts get a unique password... and finally the most important stuff such as banking gets two-factor or multi-factor authentication.
Best Wishes,
-David Delaune
|
|
|
|
|
Mininmise password reuse AND use long (20 characters+) passwords with mix of case, digits and symbols...
And damn the sites that
- Don't like passwords longer than 8 or 16 characters
- Are fussy about what characters are in your password
- Don't let you copy'n'paste your password into the relevant text box
And that's before you discover that they use plaintext (or MD5 - they're practically the same thing these days) to store passwords...
Java, Basic, who cares - it's all a bunch of tree-hugging hippy cr*p
|
|
|
|
|
... and uße non-ASCII characters! I rêällü like thหยm!
|
|
|
|
|
Maybe not that - you're relying on developers handling different character sets and Unicode correctly, which is a stretch - not as hard for many developers as dates and time zones and things, but still...
Java, Basic, who cares - it's all a bunch of tree-hugging hippy cr*p
|
|
|
|
|
... it becomes very hard for brute-force attacks: the smaller the number of different characters to be checked by a hacker, the larger the passwords which can be hacked by brute force.
|
|
|
|
|
Anything that is unrelated to elephants is irrelephant Anonymous
- The problem with quotes on the internet is that you can never tell if they're genuine Winston Churchill, 1944
- I'd just like a chance to prove that money can't make me happy. Me, all the time
modified 31-May-17 4:09am.
|
|
|
|
|
I've settled on a prefix system, a short 4-6 sequence with letters and numbers, followed by the site/thing the password is for (i.e. Codeproject for this site). And if you capitalised the first letter of the site/thing, you've met most of the common requirements, numbers, capitals and size.
Ideal, no definitely not, but easy to use and remember, as you can make the prefix sequence as complicated as you like, as its repeated use means your unlikely to forget it.
|
|
|
|
|
I started to do that. But when microsoft started directing me to outlook for my hotmail, i locked myself. Im just hoping I wont repeat my mistake if yahoo mail decides to switch to being called verizon mail.
|
|
|
|
|
Countless examples, countless hacked world-wide services, countless users affected (including myself) and we still believe that we are safe behind a hash? Yeah, right!
|
|
|
|
|
Alternatives, like biometrics, are much worse. At lease it is possible to make password system secure. I mean you have to be conscious to give away your password.
|
|
|
|
|
I don't keep the passwords in my mind, other than those really crucial like my email and social media. Everything else is secured in my KeePass. I think this is a good practice.
On the other hand, My bad practice is, I always keep few sites logged in. Specially, the blogs and tech sites, even CodeProject, is always logged on in my computer(and I don't remember the password if I accidentally logged out and need my tiny USB to use the KeePass).
|
|
|
|
|
I believe in the practice you are promoting, and I would love to have a system that "fills in" the passwords: basically, only one password with two-step verification, is needed to be known (to get into the vault of passwords). Unfortunately, there is no company that I trust sufficiently to hold that vault.
|
|
|
|
|
Greg Lovekamp wrote: I would love to have a system that
Greg Lovekamp wrote: Unfortunately, there is no company that I trust sufficiently to hold that vault.
Code your own
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
I think that next survey question should be :
" Would You like the World without passwords ? "
and possible answers
" Yes "
" No "
All the best,
Perić Željko
|
|
|
|
|
|
That being, what about the user names used?
When you look at uid/password pairs, I could claim I essentially never reuse anything. Along with a different email address for each place I give any information of any kind.
And, except when required by law, nothing else is true or repeated, either.
Along with rapid email notifications of transactions for almost everywhere.
Philosophy -> Best place to hide a tree: in a forest.
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you are seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
Likewise, I create a new proxy address for almost any account I activate online. Along with creating more complexity to hack other accounts, it also means that when someone has a breach and I start receiving spam to a particular address, I can usually determine exactly who leaked it.
|
|
|
|
|
My CP Password is one I've not reused, even in a a derivative, elsewhere.
Am implication of value!
(And, if I'm not lying, a security breach.)
Ravings en masse^ |
---|
"The difference between genius and stupidity is that genius has its limits." - Albert Einstein | "If you are searching for perfection in others, then you seek disappointment. If you are seek perfection in yourself, then you will find failure." - Balboos HaGadol Mar 2010 |
|
|
|
|
|
because, when one database is stolen the attackers can try to use the data on multiple services.
PS: because about 10% are reusing...
Press F1 for help or google it.
Greetings from Germany
|
|
|
|
|
Can try is understatement, they will certainly try
I do not fear of failure. I fear of giving up out of frustration.
|
|
|
|
|
I almost agree with you but you should be describing this in the past tense.
I'm retired. There's a nap for that...
- Harvey
|
|
|
|