mikestew
an hour ago
”Finally, the company should have enforced a strong password policy that would have prevented our heroes from finding dozens of accounts with “winter2023!” as the password.”
Capitalize that “w”, and you’ve got a password that will pass most PWD policies. Why do they think it was “winter2023!” to begin with? In 90 days when the PWD expires, well, it will be spring of the next year, so…
The better idea is to require passwords with some real entropy, and get rid of expiring passwords. It’s not 1999 anymore.
samrus
35 minutes ago
I swear if the ghouls running things had abit more decency and allowed people to actually access and controll their passkeys then that would be the future, everyone would adopt it. The experience is so nice with key pair exchange for ssh. Its just that there i have thr security of knowing exactly where my secret is and how i can manage it, its just a file and i can move it like a file
Nobody wants the risk of getting locked out because of apple and googles walled garden bullshit
Xeoncross
an hour ago
1. Open a web browser and do a search
2. Read until you find a sentence that you like.
3. Use it as your password
raffraffraff
35 minutes ago
How about mixing up band names? Take the end of "Florence and the machine" and mix it with the start of "Rage against the machine" and you now have the totally unguessable "Rage sharing the machine". It's a different machine see?! Nobody would know that!
ChrisRR
an hour ago
I like the last line of your comment
My password is now password
hnthrow10282910
35 minutes ago
Hacked
glitchc
an hour ago
Not enough numbers or special characters usually.
chopin
20 minutes ago
I loathe two things in password requirements: special characters and not allowing spaces. C'mon, it's 2026. Require 20 characters and call it a day.