Got it? Write the first three words on a slip of paper and keep it with your credit cards. Still can't remember it? How about just memorizing the last word? It's only one word. When you do, try to create a mnemonic to help you remember it, as in the cartoon. Try a few different passwords until you see one that tickles your fancy. What if I just can't remember my four-word master password? What's it to you if my first pet was named OpposedPilesJacksCarnage? I just use one of these passwords as an answer to each security question (they're even easy to read over the phone, if necessary) and store the questions and answers in my password manager's comments field. Any holdouts should have gotten a clue after the Palin Email Hack. They still use those? I thought that idea was completely discredited in the noughties. The four-word password easy to remember for long enough to type it in. You can take out your smartphone and grab the password from there. You don't mind typing in the site's password, but you sure don't want to type your master password. Let's say, though, that you're at a sleazy dive of an internet café using a shared machine and you want to log in to a low-value web site. Most password managers have pretty good integration with web browsers, or at least let you copy-and-paste. How do I get my passwords from my password manager into a web site or program? The only password I have to remember is my password manager's master password. I'm sure there are other programs with similar features. It keeps all my passwords locked away in encrypted files I can then use a free Dropbox account to access the passwords from Mac, Windows, Android, or iDevice or from a web browser. You could use a sheet of paper (really!), but password management software is better. That means you'll have lots of passwords (I have well over 1,000), and you'll need a password manager. ![]() ![]() Even variations on the same password, no matter how clever they may seem to you, are easy marks. Never, never, ever use the same password for more than one site. Word to the wise: your brain isn't capable of cryptographic levels of randomness.Ī consensus of the discussion was that four words is probably inadequate for sensitive applications. The xkcd system doesn't depend on the crackers not being "on to this trick." Bruce's criticism would only apply if the words weren't picked randomly, as might happen if someone thought that they were able to pick words at random in their head without using a good external source of randomness (dice or a properly programmed computer). The password crackers are on to this trick." Bruce got it wrong. There was an interesting discussion on Bruce Schneier's blog about xkcd passwords, in which he said "This is why the oft-cited XKCD scheme for generating passwords - string together individual words like 'correcthorsebatterystaple' - is no longer good advice. ![]() Anything of the twelve-characters-with-upper-and-lower-case-and-two-non-consecutive-digits-a-punctuation-mark-and-a-supershift-character variety that's good enough to stump a computer is too complex for a human to remember. This site was inspired by an xkcd comic about passwords. If you're very afraid, use the bonus version. If this isn't a sensitive application, you're probably fine if you only use the first four words. If you don't like the new password, try a different one. Your bonus password is RedrawRefaceMulishPermuteHealer Your new password is RedrawRefaceMulishPermute
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |