• How to: even safer passwords. Simple trick
    108 replies, posted
[img]http://img89.imageshack.us/img89/166/passwordreuse.png[/img] [i]Source: [url=http://xkcd.com/792/]xkcd, password reuse[/url][/i] This image gave me an idea. They're right, but no one really thinks about it. Of course it's simple to just use one password with capital letters, numbers, normal letters etc. It would be hard to find out that pasword in the first place. But if anyone finds out the password of one website, they know the password of all the logins you use. You can use two or more unique passwords but this isn't ideal either, besides it's harder to remember which password you use for which sites. Most resources that give you hints and tricks about how to get a secure password, [b]don't[/b] pay much attention to the issue of password reuse. Examples: - [url=http://www.microsoft.com/protect/fraud/passwords/create.aspx]Microsoft's guide[/url] (you have to click a link to find it) - [url=https://www.google.com/accounts/PasswordHelp]Google password guide[/url] - ... etc. Even one of the Donald Duck magazines I once read has a password guide. The simple solution: use a unique [b]and[/b] strong password for [b]each[/b] different website/login portal. The biggest problem with this solution is that it's hard to remember all these passwords. So here's how you should get passwords that are: 1. Easy to remember 2. secure 3. unique per web page 4. perhaps not too long and hard to type [b]Step 1.[/b] Create a new [i]base[/i] password of between 4 to 6 characters. Use capital letters, lowercase letters, numbers etc. Your base password can be longer, though I don't consider this necessary. [quote]tip! Make a vertical split on your keyboard, seperating the left half to the right half. Let the letters from your base password switch between sides. This is faster to type! Example: A3vs5 is all on the left side, it takes longer to type this, especially if you touch type. P4mros switches the letters between the right right and left side, making it easier and faster to type[/quote] From now on I'll use P4mros as example for the base password. [b]Step 2.[/b] Make the base password unique for every website by adding letters and/or other characters. Do this by creating a simple algorithm: 1. Take the name of the website you're using. In this case [i]facepunch[/i]. [quote]Tip: To make it even more secure, use the name of the subject of the site, like gmodforum (or something similar) in this case! You can use anything that identifies this website and is easy to remember.[/quote] 2. Get the first two letters (fa), last two letters (ch), acronym (fp) or whatever from the name. 3. Put it in the password. You can put it at the start: fpP4mros, the end: P4mrosfp, beginning and the end: fP4mrosp etcetera. (Think of something :buddy:) 4. Use the same algorithm for every website to remember it more easily. [quote]If you choose to use the first two letters and put it at the start of the password for facepunch. Don't start putting it on the end of the password for your gmail, it will confuse you and it will make you forget your passwords.[/quote] The only things you need to remember are the base password and the algorithm you use. I used to have JJJdelah1t1e and Gm0dP1an0 as passwords for all sites, someone found out about JJJdelah1t1e and "hacked" some of the sites I used. Even though those passwords are pretty secure (long, different types of characters) I was still fucked. [b]The harder you make the algorithm visible in one password the more secure your websites are[/b]. If you take this password: [i]P4mros_facepunch[/i] people won't take long to figure out that it's probably [i]P4mros_twitter[/i] for your twitter account. Give this subject a good thought and have fun with more secure logins!
The one for everything else is a potential security risk. Anyone finding out about that one has your login credentials for a lot of sites.
is your password fachfp?
Just use roboform or something, only one password to remember.
I kind of do this already. Although a bit simpler. I still have this massive unique password for my Steam account.
[QUOTE=Intoxicated Spy;25314925]is your password fachfp?[/QUOTE] Nope. Don't just use lowercase letters, use uppercase and numbers too. Strange characters make it even more secure, but not every site supports those.
I have about 5 passwords but I mix and match them on each site. So like (this isn’t actually it but like) hello how are you good I would make it like profile1:Howgood profile2:youarehow etc. Its useful as its easy to remember and seemingly random.
Am I the only Idiot who writes down all the different passwords I have for different sites on a notepad on my desktop? Excluding steam.
The password for my email is something like 546aDSd86deFFFxsds, which I noted on a paper and put somewhere along my ID card and shit. Then, for all other ebsites, I come up with random shit like that, as long as possible, and note it in an empty email in my inbox. am so leet.
Another way to make an easy to remember password is to make a sentence that you will remember easily. e.g. "My dog is called bob and lives with me at wherever" Then take the first letter of each word. mdicbalwmaw. Replace 'at' with @.
Your password for FP isn't fpP4mros, how can we trust a guide which you don't really use AND lie to us!
Make your password "password". Works every time :smug:
I have like 15 possible passwords I use that I have to cycle through every time I visit an old site to see which one I had there
[QUOTE=GoldenBullet;25315063]I have like 15 possible passwords I use that I have to cycle through every time I visit an old site to see which one I had there[/QUOTE] its password12345 isn't it?
For just normal bullshit, I use the same passwords (Like facepunch for example). You know, shit that doesn't need to be secure. For things like steam and Email, I use different passwords. My steam account has my strongest.
My password is 19 characters of just random uppercase, lowercase and numbers. gldgdfGsGDFoqo76756
I have 2-3 base passwords that abbreviate slightly with different sites.
I stored most of my passwords in KeePass. That way I don't have to remember them and can use random 30 symbol combinations for most sites.
Why the fuck would you need so many complicated passwords with numbers and other shit in it, it's not like you are going to get bruteforced or something I always used one password with variations to it for sites who want your password to be unmemoriseable like 'iLuv-3-cocks,', fucking hard to memorise while there's so little point to it.
The downside is that I can't access some sites without the database. I should probably upload it somewhere... [B]Edit:[/B] It has a strong password and each try takes about a second on my computer, so it's not a that bad idea.
My password is a series of numbers and letters I found on an old toothbrush.
I have an even better one that makes your password 100% invulnerable, but it's very complex so you'll have to PM me your password and I'll make it invulnerable for you. Anyway this is a good technique, mostly because no-one will think "Oh his password is 1234, but it won't work here so maybe he put FP at the end", they'll just think it's completely incorrect and try something else.
I have a long pattern for my passwords, i don't even know it that's how secure it is. :smug:
[QUOTE=BrQ;25315216]Why the fuck would you need so many complicated passwords with numbers and other shit in it, it's not like you are going to get bruteforced or something I always used one password with variations to it for sites who want your password to be unmemoriseable like 'iLuv-3-cocks,', fucking hard to memorise while there's so little point to it.[/QUOTE] Passwords are far more often leaked than broken directly, so it's a good idea to have mostly unique ones. The hash of one of my passwords was leaked some time ago, but they didn't get the plaintext because it was too long/not in a dictionary.
[QUOTE=Xera;25315021]Another way to make an easy to remember password is to make a sentence that you will remember easily. e.g. "My dog is called bob and lives with me at wherever" Then take the first letter of each word. mdicbalwmaw. Replace 'at' with @.[/QUOTE] That's what most password guides say. The point is that this password can be secure on itself, but if you reuse it you dramatically decrease its security. No matter how random it is.
My passwords are in hexadecimal :smug:
[QUOTE=Tamschi;25315330]Passwords are far more often leaked than broken directly, so it's a good idea to have mostly unique ones. The hash of one of my passwords was leaked some time ago, but they didn't get the plaintext because it was too long/not in a dictionary.[/QUOTE] never happened to me even if it did and people did find out my password, I don't think they'd search the whole internet for my accounts, profiles and emails.
my password is *****************.
[QUOTE=BrQ;25315417]never happened to me even if it did and people did find out my password, I don't think they'd search the whole internet for my accounts, profiles and emails.[/QUOTE] It's obvious that they would try the most known ones such as facebook and webmail accounts.
Got six 14character passwords of random capital/normal letters and numbers. To be honest I found I could utilize them more by mixing them together making them 24 character passwords I think is the maximum for most websites. Good enough?
Sorry, you need to Log In to post a reply to this thread.