People still seem to be using passwords instead of passphrases, and I’ve been getting calls from people telling the’re MSN or what ever was hacked, now you can test your password strength on Microsoft’s password checker (https://www.microsoft.com/en-gb/security/pc-security/password-checker.aspx) which is worth while if you don’t want your password cracked, and your account hacked.
People still seem to be using passwords instead of passphrases, and I’ve been getting calls from people telling the’re MSN or what ever was hacked, now you can test your password strength on Microsoft’s password checker ( https://www.microsoft.com/en-gb/security/pc-security/password-checker.aspx ) which is worth while if you don’t want your password cracked, and your account hacked.
I remember being a part of the SixApart/LiveJournal commtniuy, when they tried enforcing password changes and guidelines. I’ve worked for companies that did the same thing. My phone provider just stopped doing it (about a month after I told them this policy was backward and dangerous).Here’s what happened: people used (or re-used) incremental passwords, vocalised gobbledegook, or wrote them on paper, keeping them (at least temporarily) where they are observable. Here’s the solution: stop letting people effectively brute-force your system.Am I wrong? I’m a neophyte at this, but some basic character manipulation, a timer, screen- and key-guards, and some log-on penalties should do it