Serious Security

SQLServerCentral is supported by Red Gate Software Ltd.

Popular Topics

Home

Members

Calendar

Who's On

Home » SQLServerCentral.com » Editorials » Serious Security

15 posts, Page 2 of 2

««1 2

Serious Security

Rate Topic

Display Mode

Topic Options

Author

Message

TravisDBA

Posted Thursday, January 17, 2013 10:25 AM

Ten Centuries

Group: General Forum Members
Last Login: Wednesday, June 12, 2013 10:46 AM
Points: 1,290, Visits: 3,001

D.Oc (1/17/2013)

I use Keepass for storing my passwords, it is only way to remember them all.
For example, password for my Gmail acc. is 56 characters long and I'm changing it every 2 months.
I use shorter passwords for forums, it's all about priorities.

Same here, and you can't beat the price either. BigGrin

"Technology is a weird thing. It brings you great gifts with one hand, and it stabs you in the back with the other. ... BigGrin

Post #1408539

john.moreno

Posted Thursday, January 17, 2013 11:46 AM

Old Hand

Group: General Forum Members
Last Login: Yesterday @ 4:29 PM
Points: 339, Visits: 954

Barry Wright-268269 (1/17/2013)

It seems to me that a big factor in this is just password fatigue. We have so many password "protecting" things from the very important like bank accounts and company data to trivial things like this forum, frankly, and other such stuff.

Frankly just about the only reason to have a unique password at a site like this one, is so that it's not reused elsewhere where the password is important. That way if this site has bad practices or a disgruntled employee, nothing important is compromised.

I wish this site used OpenID so that there'd be one less site to remember.

Post #1408556

Jim P.

Posted Thursday, January 17, 2013 6:59 PM

SSC-Addicted

Group: General Forum Members
Last Login: Today @ 5:51 PM
Points: 452, Visits: 558

Any time someone brings up password security I always think of this XKCD commentary

----------------
Jim P.

A little bit of this and a little byte of that can cause bloatware.

Post #1408690

john.moreno

Posted Thursday, January 17, 2013 7:48 PM

Old Hand

Group: General Forum Members
Last Login: Yesterday @ 4:29 PM
Points: 339, Visits: 954

Jim P. (1/17/2013)

Any time someone brings up password security I always think of this XKCD commentary

Except that for a site that you visit once a week, let alone once a month or once a year, you haven't memorized it, you've forgotten all about it. It may have taken you an hour of looking around to even FIND the site, you aren't going to remember the password, unless of course it's the password you use everywhere else.

Which is the advantage of OpenID -- you don't have to remember the password, you just have to be using the same OpenID provider as you were a year ago.

Pasword safe's are fine, but they may not be trusted -- or used frequently enough to be considered worthwhile.

Post #1408694

Jim P.

Posted Thursday, January 17, 2013 10:59 PM

SSC-Addicted

Group: General Forum Members
Last Login: Today @ 5:51 PM
Points: 452, Visits: 558

john.moreno (1/17/2013)

I use XMarks for most of the web.

My problem is when you get into some of these sites -- you have to have a capital, a number and a character. Then they advertise you can access them from a phone app. But you are restricted from saving the password, or even the strange login name that you have to use that is totally separated from your e-mail account or your typical user id.

I have over five credit cards, a mortgage, a car loan, my work's website, more than seven SQL and other forums that I participate in. I also have my own website.

I'm smart enough to group my passwords from financial, to e-mail to forums, etc. But I still have locked myself out so hard that a fin site had to send me a snail-mail to unlock my account.

----------------
Jim P.

A little bit of this and a little byte of that can cause bloatware.

Post #1408720

« Prev Topic | Next Topic »

15 posts, Page 2 of 2

««1 2

Permissions