You have to love the Computer Geeks.
Seriously, they tell you that to secure your access, you need a good strong password, that you can easily remember, but that no one can guess at. They suggest lots of conflicting notions, on how to do that, except one. HOW TO REMEMBER THEM.
Funny thing is, if you use your computer, it’ll store the damn shit anyways, for most of the time, if you let it. Everyone & their dog, uses some password storage program, or even the auto fill features, like in the Google Toolbar. And then find out how their personal details have been stolen.
However, one does need to make an effort at security, because those hacker children are growing in numbers. So what goes into a good Password?
For me, the old stand by of using an important date, is gone. I mean that is too simple, and most hacking programs or code crackers, can easily figure out those combinations. If you think about it, most really secure programs, use nonsense keys that are nothing but a jumbled mixture of upper and lower case letter, numbers, and strange symbols like ” $,%< ^ * “ etc. PLUS they are generally TWENTY SIX CHARACTERS LONG!
Now I have a good memory, but no way could I remember that many strange combinations, so I go for the next best thing, least in my mind.
To begin with, I use a Rolodex near my computer, and list all my log-in info on a small card, file it under the site or company name. That helps when the old head gets filled with nonsense, or old age shows up.
Secondly I choose a complex array of numbers, letters, symbols, for the password.
NOW, if a site suggests that a good password is 6 or 7 characters, I UP THAT NUMBER by at least one or two. I mean who wants to be the same as everyone, PLUS I am assuming they base that on averages. Hackers will know those averages too!.
Then I use a few letters, a mix of upper and lower case, plus a few number combinations, sometimes two or three in a row, sometimes just one. I also add a symbol or two within the line.
However, I do tend to use the same password, but it generally passes every strength indicator, so I feel safe. What I do as well, is to add a character now and then. Either at the beginning or at the end, that is one I can remember.
I MEMORIZE the main password combination, and the more you use it, the easier it becomes to remember. If you keep to a standard set of “added symbols” to use at the start or end, it is simple to figure out when you get that “INCORRECT USERNAME OR PASSWORD” warning.
It isnt the best system around, but frankly nothing truly is, unless you want to go & try to rememer a twenty six character long password.
Myself, a card index is sufficient to jog the memory for casual logins, passwords. My main password, is one I memorize,that is secure and hard to crack. The greater the variation, the harder it is for those code programs to decypher, while you are still alive to be using them.
Keep in mind, most hackers automate their cracking. It is a program that tries to guess your password, so if it is hard to begin with, well, most hosts today would see the brute force attempts, and block it.
If your desk is so unsecure, that anyone can rifle through it,well you have other problems far more important to content with, than just having your login info stolen.
If you have a ton of people accessing your computer, well, a card index and a memorized login beats using the password reminder on the computer, or the auto fill in software.
You know it is funny really. I mean hosts for example tell you to be secure in choosing your password, then they add your login username to your account for FTP or database names. Talk about a contradiction in messages!
Wordpress for examples tells you to use something other than WP_ for the database tables, yet in the file it gives you, that is exactly what they have as the default. I mean why not simply have a comment to ADD YOUR TABLE PREFIX, USE TWO TO X LETTERS OR NUMBERS?
Course that would make sense, wouldnt it?
Jul 22nd by Malcontent