Slashdot Mirror


Strong Passwords Not As Good As You Think

Jamie noticed that Bruce Schneier wrote a piece on a paper on strong passwords that tells us that the old 'strong password' advice that many of us (myself included) regard as gospel might not be as true as we had hoped. They make things hard on users, but are useless against phishing and keyloggers. Everyone can change their password back to 'trustno1' now.

2 of 553 comments (clear)

  1. Re:News at 11 by BitZtream · · Score: -1, Flamebait

    So every 4 months, taking a few seconds to learn a new password which you will then proceed to use every day for the next 4 months is too much effort for you eh?

    Fortunately, many companies have policies to help people like you out. It generally involves working for some other company afterwords however.

    I hear you, passwords are hard, giving a shit about what you do is hard.

    You should probably find a new job that doesn't require you to have a memory better than a snail if you don't like the policy rather than just making your own rules because you can't be bothered to follow the ones that are in place.

    Its good that you think you know better than the people in your company that are paid to make those decisions. Maybe you do, maybe you know better than everyone else. Of course you do. Thats why you're in charge and setting these sort of policies is your responsibility.

    Stop being a lazy fuck and do what you're supposed to or find a new job.

    --
    Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
  2. Re:News at 11 by mstrswrd06 · · Score: 0, Flamebait

    Alternatively, you can get a Mac.