Bruce Walker wrote:
On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling<[email protected]> wrote:
They could have tried to guess my password, it wouldn't be impossible, as I
believe a weak password you remember is better than a strong password that
you have written down where it can be found.
Bad assumption. The number of folks who have access to the Post-it
notes you stuck to the bottom of your keyboard at home is very
limited. But a server-farm of hacked PCs running 24x7 can crack easy
passwords in seconds, anywhere on the net.
Although access to post it notes on your desk at work is a little harder
to control. What I did was come up with one solid password to remember,
then I have a simple system that changes it for each site, like the
first and third letters of the url.
For example the root might be t1h$7@e
and if I prepend the first and third letters of a url, I'd get
got1h$7@e for google
yht1h$7@e for yahoo
pmt1h$7@e for pdml
rdt1h$7@e for red4est
Someone that hacks several of my passwords would be able to figure out
the rest, but that's not generally the way they do it. They just steal
the passwords from one site, then try applying them with the same email
to every other site.
>
So now I've changed it to
something that's not easily guessed. I just hope I don't forget it.
If you easily forget passwords -- who doesn't? -- get one of those
apps like 1password that keep them safe for you.
--
Larry Colen [email protected] (postbox on min4est)
--
PDML Pentax-Discuss Mail List
[email protected]
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow
the directions.
