User: Password:
Subscribe / Log in / New account

Enforcing password strength

Enforcing password strength

Posted Oct 14, 2011 23:23 UTC (Fri) by giraffedata (subscriber, #1954)
In reply to: Enforcing password strength by Im26
Parent article: Enforcing password strength

I have a note book (paper) and I write them down.

If anyone breaks into my home and steals that, they would probably have stolen everything and left my wife and I dead on the ground.

What happens if it is a house guest who is trying to access the accounts?
Including the cable guy, the plumber, etc.

Also, most burglars don't kill the homeowners. So you're still alive, and in addition to having lost all the valuables you keep in your house, you've now lost the money you keep in financial institutions, your private medical records, etc.

So that reasoning does not work well, but I still think your strategy is reasonable because unless you have strong or numerous enemies, the probability of someone stealing your password from your desk drawer is probably insignificant.

In fact, most people go further: they set up all but the most sensitive services on their home computers to log on without a password. The chance of someone breaking into your house to log on to your Facebook account is too small to justify having the computer hassle you every time you want to log on yourself.

But I think better than keeping a notebook at your house is to keep a piece of paper in your wallet. That way you have access when you're away from home, and it's even less likely that someone will attack you to get your password than that someone will break into your home.

(Log in to post comments)

Enforcing password strength

Posted Oct 18, 2011 0:47 UTC (Tue) by jamesh (guest, #1159) [Link]

Or better yet, have a piece of paper that contains half of each password. Combine these half-passwords with some other word you've memorised, and you can have unique passwords for multiple services without having to remember multiple passwords. And if someone does get access to your password list, it wouldn't be sufficient to log in to those services.

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds