[dpeters11]

The 2012 edition of most popular (and bad) passwords.

Fortunately none of mine are on the list. Even I wouldn't be able to guess most of my passwords, so not much concern there.

http://news.cnet.com/8301-1009_3-57538774-83/jesus-welcome-join-list-of-worst-passwords/

 

[jimmie57]

I have many accounts online. No way to keep up with the passwords, security questions and answers, etc. for each of them except to write them down. I know you are not supposed to do that, but, when you are 69 you do not have a choice.

 

[kfcrosby]

The 2012 edition of most popular (and bad) passwords.

Fortunately none of mine are on the list. Even I wouldn't be able to guess most of my passwords, so not much concern there.

http://news.cnet.com/8301-1009_3-57538774-83/jesus-welcome-join-list-of-worst-passwords/

Good way to check...

http://howsecureismypassword.net/

tells me it will tak 71 quadrillion years to crack mine open

Kevin

 

[kfcrosby]

I have many accounts online. No way to keep up with the passwords, security questions and answers, etc. for each of them except to write them down. I know you are not supposed to do that, but, when you are 69 you do not have a choice.

Or you can always use something like LastPass

https://lastpass.com/

 

[Earl Bonovich]

Good...

Th3s3Rn0tTh3dr0!dsY0urL00k!ng4 is still safe.

 

[Carl Spock]

My password strength varies by the site.

For a site like this, it's easy. I use the same password for all of my forums. Right now it's an unusual, probably not in the dictionary, word but it was a common five letter word for over a decade.

The password to sign onto my Wi-Fi is a similarly easily remembered word that even ties into the network's name. You give that to friends when they come over. It should be easy for everyone to remember. I live in a small enough town where being relaxed isn't a problem. Heck, my neighbor has a wide open network. I could sign onto his today.

My bank ones? Capitals, lower case letters, symbols and numbers. And long. Long is the best bet.

 

[dmurphy]

Good way to check...

http://howsecureismypassword.net/

tells me it will tak 71 quadrillion years to crack mine open

Kevin

You mean a website where I can enter and transmit my supposedly "secure" password and send it in cleartext?

Sign me up!

 

[dpeters11]

Good way to check...

http://howsecureismypassword.net/

tells me it will tak 71 quadrillion years to crack mine open

Kevin

Amateur
My GMail password:
3 quintillion quinquagintillion years

And that's before working on the required two factor.
Of course even one quadrillion years is many many times older than the age of the Universe. I set mine like I did more for fun, not for any real practical reason. And I didn't even set it to GMail's max length. But, since all the other sites have that as my email, any password resets go there, so I wanted to make sure it was one of my most secure. Then I set the recovery address for Gmail to a randomly generated (as much as email addresses can be) address on a different provider, with a random password.

I highly recommend LastPass as well. It really does "set you free." No longer having to remember which password is used where, with the various stupid requirements sites throw at you. "Must be a secure password, but cannot use symbols." "Cannot be more than 8 characters", etc.

 

[dpeters11]

You mean a website where I can enter and transmit my supposedly "secure" password and send it in cleartext?

Sign me up!

That's not how the site works. Everything is done on the local system in Javascript. They never get the password.

Besides if your password is say: !K8z83l&*XBJ#y, you'd get the same answer as to security if you put !K9zg32&*XnJ#r and there would be too many differences to figure out.

 

[dpeters11]

My password strength varies by the site.

For a site like this, it's easy. I use the same password for all of my forums. Right now it's an unusual, probably not in the dictionary, word but it was a common five letter word for over a decade.

The password to sign onto my Wi-Fi is a similarly easily remembered word that even ties into the network's name. You give that to friends when they come over. It should be easy for everyone to remember. I live in a small enough town where being relaxed isn't a problem. Heck, my neighbor has a wide open network. I could sign onto his today.

My bank ones? Capitals, lower case letters, symbols and numbers. And long. Long is the best bet.

Keep in mind, these days there are a large number of wi-fi networks that are easy to get into even with WPA2 encryption and no need to figure out the passcode.

As for banks, be careful. I know with Chase, case doesn't matter in the password field. They switch everything to lowercase. So if the password is QweRtY (or at least you think it is), they'll accept qwerty, qWerTY etc all as valid. Guess it's to reduce calls to customer service when someone leaves cap lock on...

 

[Earl Bonovich]

As for banks, be careful. I know with Chase, case doesn't matter in the password field. They switch everything to lowercase. So if the password is QweRtY (or at least you think it is), they'll accept qwerty, qWerTY etc all as valid. Guess it's to reduce calls to customer service when someone leaves cap lock on...

I bet it had more to do with easier password entry on Mobile Devices...

 

[dpeters11]

Maybe. Still don't like it, or any other restrictions that aren't a minimum requirement. Google's max is 200 characters, that I am fine with.

 

[Laxguy]

Good way to check...

http://howsecureismypassword.net/

tells me it will tak 71 quadrillion years to crack mine open

Kevin

Hmmmm. Except for the folks who have access to the PW you put in there. Then it'll take about ten seconds...:sure:

 

[The Merg]

Good...

Th3s3Rn0tTh3dr0!dsY0urL00k!ng4 is still safe.

It would take a desktop PC about 3 duodecillion years to crack your password

Yeah, that's secure.

- Merg

 

[Laxguy]

Amateur
My GMail password:
3 quintillion quinquagintillion years

Very impressive!

However, I am at the opposite end of the spectrum. I can't imagine why anyone would want access to my e-mail on Google, and if they did get it, can't imagine what harm they could do with it.

 

[dpeters11]

Hmmmm. Except for the folks who have access to the PW you put in there. Then it'll take about ten seconds...:sure:

How would they? It still works with no connection to the Internet. It's all javascript. That's client side, not server side.

Though I guess they could be hacked themselves, the site changed etc.

 

[dpeters11]

Very impressive!

However, I am at the opposite end of the spectrum. I can't imagine why anyone would want access to my e-mail on Google, and if they did get it, can't imagine what harm they could do with it.

If it's where sites send the emails when you hit a forgot my password link, it can do quite a bit of harm if they get in, or if it's what you have your primary email recovery address set to.

 

[Laxguy]

7. letmein (up 1)

This puzzled me for a bit, not being a word I knew, and thinking it looked sorta Germanic. Then, duh! it hit me. Or ithitme. :lol:

 

[Laxguy]

How would they? It still works with no connection to the Internet. It's all javascript. That's client side, not server side.

Though I guess they could be hacked themselves, the site changed etc.

Yes, I see that the guesstimates can be all client side, but how do we know the site isn't passing on the entry at some point? I have no reason to suspect it, but it's certainly possible to do.

 

[RunnerFL]

I have many accounts online. No way to keep up with the passwords, security questions and answers, etc. for each of them except to write them down. I know you are not supposed to do that, but, when you are 69 you do not have a choice.

There are apps that can store passwords for you. All you have to remember is the password to the app.