On secure passwords, remember that given at least some complexity, the most important thing is length.
For example, if you have a short mix of Caps, non caps, numbers and symbols and then pad out the password with a heap of another character you can make an extremely secure password that is relatively easy to type in. Check out the password haystacks episode of Security Now on the TWiT network. Garth www.iblindtech.com Follow me on twitter @BlindTechMusing On 19/07/2012, at 7:38 PM, Scott Howell wrote: > I agree that you don't want to use words per say, but it is perfectly > acceptable to construct a word or sentence with the aforementioned caveats. I > think the critical thing is to: > 1. Make the password random in the sense that you use words or phrases you > know, but inserting special characters and numbers. > 2. Randomly capitalize letters in the password. > 3. Never ever, ever, ever, ever, use the same password for any service. > Everything you have read here is right provided you use some common sense. > Yes you could come up with an incredibly long string of characters that has > no meaning and meets all the criteria presented here. The problem is most > people cannot remember 20 to 30 random characters and 20 to 30 characters > that meet the criteria we have been discussing is one hell of a password. > This is where programs like 1Password come into play and really shine because > you can remember a single master password (complex enough) and let 1Password > enter the passwordd for you. In fact key logging programs cannot capture > passwords entered this way since you are not actually typing them. :) > THere is a really great podcast called the NOSILLA podcast which you can find > in iTunes or your favorite podcacher. You can get more info at > http://www.podfeet.com. Allison is a great person, supports the "blind" > community, and has some really good folks on her podcast such as Bart who in > the most recent episode discussed passwords. > > On Jul 19, 2012, at 12:02 AM, Sieghard Weitzel <siegh...@live.ca> wrote: > >> And just to throw in my 5 Cents worth of password whisdom, it is actually >> not recommended that you use actual words like you would find in a >> dictionary even if you do throw a couple numbers and an underscore in. Sure, >> it is better than using RedBlueGreen as a password, but even better and I >> always get the "strong password" indicator where that is indicated is to use >> just upper and lower case letters along with some numbers in between and/or >> at the end and punctuation. Of course some websites don't allow characters >> other than letters and numbers, but when they do I use it. As I told >> somebody before, I remember these seemingly random passwords by making up a >> sentence, I use the first letters of each word with proper upper and lower >> case and add in some numbers and characters. Yes, it does make for a bit >> slower typing, but where it counts like on banking, credit card and shopping >> sites including iTunes my passwords are at least 10 and sometimes up to 18 >> characters long. I do use Roboform, but for the most part I know my >> passwords since I do follow a pattern except it's really something that I >> believe nobody would have a chance at guessing. >> >> >> Regards, >> Sieghard >> >> >> -----Original Message----- >> From: viphone@googlegroups.com [mailto:viphone@googlegroups.com] On Behalf >> Of Raul A. Gallegos >> Sent: Wednesday, July 18, 2012 5:05 PM >> To: viphone@googlegroups.com >> Subject: Re: Best way to enter password question >> >> Hi, in addition to Scott's excellent post below, you can use the same >> password type pattern for all your passwords. This makes them all easy to >> remember, while making each one different. For example, you can use >> something common, like your favorite ice cream flavor or favorite color. >> In the example of favorite color, let's use blue. So, to add some >> distinction, I use Blue with a capital B. Now, since it's Apple, I can start >> building my password by separating it with periods. So I can start with >> Blue.Apple. Note the capital b in blue and a in apple. Now, to add some >> numbers for that last bit of security. Maybe you can do the year you were >> born in but in reverse order. So, if you follow this same procedure, you can >> make 5 different passwords for 5 different services and yet you can remember >> them all by using the same pattern of favorite color, the name of the >> service, and your reverse birth year. So, my password for Apple, Paypal,, >> Gmail, Amazon, and my bank would be the following. >> >> Blue.Apple.47 >> Blue.Paypal.47 >> Blue.Gmail.47 >> Blue.Amazon.47 >> Blue.WellsFargo.47 >> >> As you can see, all have the same pattern, yet all are completely different. >> Of course, this is just a simple example, and no, these are not my real >> passwords, but it may get you started in the right direction. >> >> Take it from a former Unix sysadmin, you never ever want to use the same >> password for multiple services. >> >> -- >> Raul A. Gallegos >> I just want you to know that, when we talk about war, we're really talking >> about peace. - George Bush Home Page: http://raulgallegos.com >> Twitter: https://twitter.com/rau47 >> Facebook: http://facebook.com/rau47 >> >> >> On 7/18/2012 7:09 PM, Scott Howell wrote: >>> The best passwords are at least 12 if not 15 characters, includes >>> punctuation such as / (slash), . (period), ! (exclamation point), etc., >>> mix of upper and lower case letters, and numbers. You can take an entire >>> sentence and change letters to numbers such as an e to a 5 etc. Use your >>> imagination, but do not make the password so damned complicated that you >>> cannot remember it. I have done this and it is incredibly frustrating. >>> :) There is a balance between complex and to complex. Of course using >>> programs such as 1Password or Last Pass and storing your passwords does >>> make things easier. >>> >>> hth, >>> Scott >>> >>> On Jul 18, 2012, at 7:01 PM, "Michael Amaro" <mikeam...@earthlink.net >>> <mailto:mikeam...@earthlink.net>> wrote: >>> >>>> Hello Listers, >>>> No matter what I do while entering a password when trying to create an >>>> apple iD it always says that the strength is moderate. What is the >>>> best way to enter the password so that it is strong? I have followed >>>> the suggestions given below the password status. Any Ideas? >>>> Thanks >>>> Michael >>>> Windows Live ID: >>>> mikeam...@earthlink.net <mailto:mikeam...@earthlink.net> >>>> e-mail: >>>> mikeam...@earthlink.net <mailto:mikeam...@earthlink.net> >>>> Skype ID: >>>> mikeameli >>>> John F. Kennedy >>>> "Ask not what your country can do for you - ask what you can do for >>>> your country" >>>> >>>> -- >>>> You received this message because you are subscribed to the "VIPhone" >>>> Google Group. >>>> To search the VIPhone public archive, visit >>>> http://www.mail-archive.com/viphone@googlegroups.com/. >>>> To post to this group, send email to viphone@googlegroups.com >>>> <mailto:viphone@googlegroups.com>. >>>> To unsubscribe from this group, send email to >>>> viphone+unsubscr...@googlegroups.com >>>> <mailto:viphone+unsubscr...@googlegroups.com>. >>>> For more options, visit this group at >>>> http://groups.google.com/group/viphone?hl=en. >>> >>> -- >>> You received this message because you are subscribed to the "VIPhone" >>> Google Group. >>> To search the VIPhone public archive, visit >>> http://www.mail-archive.com/viphone@googlegroups.com/. >>> To post to this group, send email to viphone@googlegroups.com. >>> To unsubscribe from this group, send email to >>> viphone+unsubscr...@googlegroups.com. >>> For more options, visit this group at >>> http://groups.google.com/group/viphone?hl=en. >> >> -- >> You received this message because you are subscribed to the "VIPhone" Google >> Group. >> To search the VIPhone public archive, visit >> http://www.mail-archive.com/viphone@googlegroups.com/. >> To post to this group, send email to viphone@googlegroups.com. >> To unsubscribe from this group, send email to >> viphone+unsubscr...@googlegroups.com. >> For more options, visit this group at >> http://groups.google.com/group/viphone?hl=en. >> >> -- >> You received this message because you are subscribed to the "VIPhone" Google >> Group. >> To search the VIPhone public archive, visit >> http://www.mail-archive.com/viphone@googlegroups.com/. >> To post to this group, send email to viphone@googlegroups.com. >> To unsubscribe from this group, send email to >> viphone+unsubscr...@googlegroups.com. >> For more options, visit this group at >> http://groups.google.com/group/viphone?hl=en. > > -- > You received this message because you are subscribed to the "VIPhone" Google > Group. > To search the VIPhone public archive, visit > http://www.mail-archive.com/viphone@googlegroups.com/. > To post to this group, send email to viphone@googlegroups.com. > To unsubscribe from this group, send email to > viphone+unsubscr...@googlegroups.com. > For more options, visit this group at > http://groups.google.com/group/viphone?hl=en. -- You received this message because you are subscribed to the "VIPhone" Google Group. To search the VIPhone public archive, visit http://www.mail-archive.com/viphone@googlegroups.com/. To post to this group, send email to viphone@googlegroups.com. To unsubscribe from this group, send email to viphone+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/viphone?hl=en.
