1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Most common passwords 2012

Discussion in 'Tech Talk - Gadgets, Gizmos and Technology' started by dpeters11, Oct 24, 2012.

  1. RunnerFL

    RunnerFL Well-Known Member

    17,054
    312
    Jan 4, 2006
    It tells you that, then it stores it. ;)
     
  2. dennisj00

    dennisj00 Hall Of Fame

    9,690
    196
    Sep 27, 2007
    Lake Norman, NC
    One other thing for most any site that you enter credit card or other financial info, be sure that the login page is already a httpS: SSL encrypted page.

    Never put any critical info in a site that is just HTTP:
     
  3. TXD16

    TXD16 Icon

    958
    30
    Oct 29, 2008
    I'd be lost without LastPass (and so would most of my passwords)!
     
  4. RunnerFL

    RunnerFL Well-Known Member

    17,054
    312
    Jan 4, 2006
    And not just https, https with a trusted certificate.
     
  5. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    Very true. Fortunately more and more sites are defaulting to https, especially after Firesheep. Unfortunately, it means nothing for how they actually store your password.
     
  6. RunnerFL

    RunnerFL Well-Known Member

    17,054
    312
    Jan 4, 2006
    I can't speak for other packages but I know Apache comes with a self-signed cert. Too many people are happy enough just using that and people who come to their site think that's safe enough. :(

    I use namecheap.com and get a $10 a year cert for my personal domains and I don't even collect people's info.
     
  7. dennisj00

    dennisj00 Hall Of Fame

    9,690
    196
    Sep 27, 2007
    Lake Norman, NC
    I would expect anyone collecting financial information of any kind to have a valid SSL cert.

    However, how they store your password and keep it away from hackers is a different story these days. Never use the same login with the same password for critical sites.
     
  8. spartanstew

    spartanstew Dry as a bone

    12,566
    61
    Nov 16, 2005
    Wylie, Texas
    Bosco?
     
  9. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    Unfortunately some companies etc are just cheap. I've seen many times, security is not taken seriously until a breach, and sometimes not even then. Or they take it seriously for 6 months etc, then back to the old ways.
     
  10. dennisj00

    dennisj00 Hall Of Fame

    9,690
    196
    Sep 27, 2007
    Lake Norman, NC
    I don't bank or buy from those companies. . .
     
  11. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    But you don't know. Sure they may have a valid signed ssl cert. You have no idea how its stored, some sort of breach due to lax security.

    How long was it before B&N realized they had credit card machines tampered with?
     
  12. Drucifer

    Drucifer Well-Known Member

    9,420
    245
    Feb 12, 2009
    NY Hudson...
    I have a method for remembering different PW for different sites by matching up the initials of the site with initials of relatives in my family tree and using a date of importance to that relative.

    It does help being the family genealogist.
     
  13. Davenlr

    Davenlr Geek til I die

    9,139
    28
    Sep 16, 2006
    All this about security, and the banks only allow a 4 number pin...go figure.
     
  14. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    The story goes that the inventor was going to use a 6 digit number, but his wife said she could only remember 4.
     
  15. RunnerFL

    RunnerFL Well-Known Member

    17,054
    312
    Jan 4, 2006
    You would expect it but it isn't always that way.
     
  16. yosoyellobo

    yosoyellobo Icon

    2,802
    185
    Nov 1, 2006
    Jacksonville Fl
    I was wondering what was the most secure password that could use and not have any trouble remembering. I come up with this.

    Thereare45lettersand1specialcharactorsinmypassword@

    According to howsecureismypassword.net

    It would take a desktop PC about 3 septendecillion years to crack your password.

    Damm now I have to change it.:)
     
  17. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    But most sites wouldn't let you use it. That's the real issue. We need all sites to get rid of their max length and allow all special characters.
     
  18. wilbur_the_goose

    wilbur_the_goose Hall Of Fame

    4,519
    62
    Aug 16, 2006
    passwords will be ancient history in 10 years. Biometrics will rule the day.

    Three factor authentication will be commonplace.
     
  19. yosoyellobo

    yosoyellobo Icon

    2,802
    185
    Nov 1, 2006
    Jacksonville Fl
    Until we get to the quantum computer age.
     
  20. dpeters11

    dpeters11 Hall Of Fame

    16,345
    503
    May 30, 2007
    Cincinnati
    Just hoping its good biometric security, not like we got with UPEK. But I don't see that becoming common with online accounts. Maybe OpenID or Steve Kirsch's OneID, but having it controlled by one company is problematic. Liked his mouse though.
     

Share This Page