If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Wired)   Your password sucks, and phishers know that it's either "password" or "123456," you lazy dumbass   (wired.com) divider line 202
    More: Interesting, MSN, passwords, lower-case, phishing, roosters, seventh grade, clipboards, spammers  
•       •       •

6474 clicks; posted to Geek » on 07 Oct 2009 at 4:00 PM (4 years ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



202 Comments   (+0 »)
   

Archived thread

First | « | 1 | 2 | 3 | 4 | 5 | » | Last | Show all
 
2009-10-07 02:06:00 PM
I watched my daughter log in to her PC the other day. She's 12.

I smiled and she asked me what I was smiling at.

"It just warms my heart that you use an 19 character alpha-numeric password."

/Sometimes kids DO listen to parental advice
 
2009-10-07 02:08:18 PM
I always just make my password the same as my username. It's a lot easier to remember.
 
2009-10-07 02:11:36 PM
r4d4nnyesmuygu4p0 FTW.

oops
 
rmz
2009-10-07 02:12:05 PM
123456? That's amazing! I've got the same combination on my luggage!
 
2009-10-07 02:12:15 PM
123456? That's amazing. I've got the same combination on my luggage.
 
2009-10-07 02:12:30 PM
My password is the same as my safeword.
 
2009-10-07 02:12:51 PM
Dammit!
 
2009-10-07 02:13:38 PM
123456? That's amazing? I've got the same combination on my luggage!
 
2009-10-07 02:14:18 PM
Hah, they don't know everything! I use 123457
 
2009-10-07 02:16:59 PM
All my passwords look alike... *********
 
2009-10-07 02:17:25 PM
No, we use "strong" passwords here in my office, so mine is obviously Pa$$w0rd. Though the system makes me change it every 90 days, so I think I'm gonna try to be more clever, and go with Pa$$w0rd1.
 
2009-10-07 02:18:17 PM
brigid_fitch: My password is the same as my safeword.

Meerkat?
 
2009-10-07 02:18:32 PM
It's one of four words: "Love", "Secret", "Sex", and "God".
 
2009-10-07 02:20:06 PM
Mine is 654321. Tricky.
 
2009-10-07 02:20:24 PM
123456? That's amazing? I've got the same combination on my sensory deprivation tank!
 
2009-10-07 02:21:04 PM
Cyberluddite: the system makes me change it every 90 days, so I think I'm gonna try to be more clever, and go with Pa$$w0rd1. it's written on a post-it note stuck to my monitor.
 
2009-10-07 02:26:21 PM
Okay... true story time.

Whilst performing some Agent tests in a Call Centre, we had to sign in as an Agent (duh). None of us had an Agent login. My buddy sits down at an Agent's machine, tries "password"... no go.

This Agent had a small Christmas tree on her desk, so my buddy tries "Christmas"... boom, he's in.

/Frighteningly simple, people.
 
2009-10-07 02:29:49 PM
Cyberluddite: No, we use "strong" passwords here in my office, so mine is obviously Pa$$w0rd. Though the system makes me change it every 90 days, so I think I'm gonna try to be more clever, and go with Pa$$w0rd1.

I would rather enforce a decent password and never change it than have post-its all over the place with passwords on them. Sadly we mandate changing every 45 days.
 
2009-10-07 02:31:13 PM
If you type in your fark password, it will show as stars.

********

See!
 
2009-10-07 02:33:46 PM
impaler: See!

wow, let me try it

midgettrannylover69

hey, it doesn't!!! you tricked me
 
2009-10-07 02:34:18 PM
impaler: If you type in your fark password, it will show as stars.

********

See!


kN4f/5LmK6*2`qcd\5XX

Did it work? I'm smart because I use a really complicated password so nobody can ever get it.
 
2009-10-07 02:34:21 PM
Office Hacking 101:

1. Wait until lunchtime.
2. Find cubicles of coworkers over 45.
3. Lift up keyboard and read whatever is written on the slip of paper taped under it.
4. Enter that into the password field.
5. Pretend to be coworker in various e-mails.
6. Profit.
 
2009-10-07 02:37:24 PM
ne2d: it's written on a post-it note stuck to my monitor.

Typical IT support story: I installed a dev web app for a user and then provided him the admin username and password over the phone, just to be a little security conscious.

After a couple of months I got a call from the user, saying he was finally ready to test the web app, but he'd lost his password.

He'd written it down when I gave it to him, on a post-it. He stuck that to his monitor, but the "computer guys" had come through a few weeks before and updated his system, giving him a new monitor, so he no longer had it.
 
2009-10-07 02:44:27 PM
Military is starting to link program security checks. It sucks. Not only do I have to do a completely nutty password with a minimum of 15 characters, but now the thing knows in some cases whether or not I'm trying to use the same one for multiple programs and denies it.

Like insurgents are so desperately trying to get into DMLSS and see how many wheelchairs I fixed last month
 
2009-10-07 02:44:52 PM
Cthon98: hey, if you type in your pw, it will show as stars
Cthon98: ********* see!
AzureDiamond: hunter2
AzureDiamond: doesnt look like stars to me
Cthon98: AzureDiamond: *******
Cthon98: thats what I see
AzureDiamond: oh, really?
Cthon98: Absolutely
AzureDiamond: you can go hunter2 my hunter2-ing hunter2
AzureDiamond: haha, does that look funny to you?
Cthon98: lol, yes. See, when YOU type hunter2, it shows to us as *******
AzureDiamond: thats neat, I didnt know IRC did that
Cthon98: yep, no matter how many times you type hunter2, it will show to us as *******
AzureDiamond: awesome!
AzureDiamond: wait, how do you know my pw?
Cthon98: er, I just copy pasted YOUR ******'s and it appears to YOU as hunter2 cause its your pw
AzureDiamond: oh, ok.

/Oblig.
 
2009-10-07 02:45:36 PM
Most of my passwords are alpha-numeric and where websites and such allow it, include at least one symbol e.g. !@#$%^&*()-+_=¿ etc.
 
2009-10-07 02:52:47 PM
@$$w1pe$
 
2009-10-07 02:54:12 PM
Mobkey:

********************

Did it work? I'm smart because I use a really complicated password so nobody can ever get it.


Yep.
 
2009-10-07 02:54:35 PM
123456? That's amazing? I've got the same combination on my luggage!
 
2009-10-07 02:55:41 PM
Cyberluddite: No, we use "strong" passwords here in my office, so mine is obviously Pa$$w0rd. Though the system makes me change it every 90 days, so I think I'm gonna try to be more clever, and go with Pa$$w0rd1.

LOL. That's so true. Occasionally we test passwords and you'd be surprised (mebbe not) how many people actually use passwords like that.
 
2009-10-07 03:04:50 PM
alligator1
 
2009-10-07 03:19:59 PM
My luggage combo is 123456, so I'm really getting a kick...
 
2009-10-07 03:22:13 PM
If passwords are so easy to guess, where does phishing come in?
 
2009-10-07 03:24:54 PM
123456? That's amazing? I've got the same combination on my luggage!
 
2009-10-07 03:25:11 PM
Is this where I tell people how smart I am about my password therefore giving out clues to anybody who might be hoping to compromise my account?
 
2009-10-07 03:25:17 PM
What do they know? They're Phish fans, ferchrissakes....
 
2009-10-07 03:32:54 PM
Some idiot in our office uses CAPS in her password, so whenever any of us try to log in after, we can't on the first try.
Our system requires 3 different passwords including one that has to have 7 characters, the last one being a number. Last go 'round mine was EIP4WIE1 :)
 
2009-10-07 03:34:46 PM
Dark Helmet: So the combination is... one, two, three, four, five? That's the stupidest combination I've ever heard in my life! The kind of thing an idiot would have on his luggage!
 
2009-10-07 03:35:54 PM
s7up1dM07h3rp#u(k3r
5#17#34D
0r&45m5741n

Never used any of those, but I'll bet at least a few of you all have.

N3v3r h1r3 a pr05717u73 70 3n(ryp7 y0ur d474b453 1nfr457ru(7ur3.
 
2009-10-07 03:37:15 PM
Fee Fee Fee
 
2009-10-07 03:39:09 PM
brigid_fitch: My password is the same as my safeword.

Pineapple? (SFW)
 
2009-10-07 03:51:47 PM
Cagey B: Lift up keyboard and read whatever is written on the slip of paper taped under it.

Yeah see that's not good.

But on the other hand, the "ZOMG never write your password down!!!" bit is also overkill. Just write your passwords or whatever mnemonics you need on a card in your WALLET, if anyone ever steals your wallet or looks at the card, you know you need to change all your passwords just like you'd change your credit card number at that point.

That said, the place I work currently requires all passwords to have three character classes - upper, lower, and number. They also can't contain any part of the user's login or names (longer than 4 characters) or sequences of keys too close together on a keyboard (no "asdf" for you), and they check for dictionary words (again longer than 4 characters). You must change your password at least once a year, and when you do, you can't reuse the old one for at least a week (so no just changing it and then changing it back).

As if that weren't crazy enough, they're considering requiring all passwords to use a punctuation character as well.

...and this isn't even a bank. It's insane.

So yeah, I expect to find more post-it notes under keyboards soon. Luckily I have a bunch of trivia in my head that produces strings of the appropriate quality to use (taking up room that would better be used for other things, no doubt) but it's still crazy.
 
2009-10-07 04:00:13 PM
itazurakko: Cagey B: Lift up keyboard and read whatever is written on the slip of paper taped under it.

Yeah see that's not good.

But on the other hand, the "ZOMG never write your password down!!!" bit is also overkill. Just write your passwords or whatever mnemonics you need on a card in your WALLET


Look... this is simple. Pick a word, like monkey. Put a number between each character, and a special character after each syllable. E.G. m1o1n1!k1e1y1. Then cap the first char of each syllable: M1o1n1!K1e1y1. If you need several different passwords, just make the number you use different for each, M2o2n2!K2e2y2. Worst that happens is you don't remember which number goes with which login, so you try a couple times. But bottom line, no need to write down anything anywhere ever. Pick a word and a couple simple "hashing" rules and off you go.
 
2009-10-07 04:04:15 PM
I use the first 26 characters of pi for my password
 
2009-10-07 04:04:50 PM
brigid_fitch: My password is the same as my safeword.

mmppphhh?
 
2009-10-07 04:07:41 PM
How interesting.

My password is "you lazy dumbass".
 
2009-10-07 04:07:52 PM
I work for an ISP and see this so damn much. You think you can imagine how many people do actually use 1234 ect. You imagine that number to be high. It's like 7 out of 10 high.
 
2009-10-07 04:08:10 PM
Hmm, looks like I finally got into bugmn99's account, but I can't see any comments because he has you all on ignore. You guys must be jerks.
 
2009-10-07 04:10:02 PM
bugmn99: Hmm, looks like I finally got into bugmn99's account, but I can't see any comments because he has you all on ignore. You guys must be jerks.

no, you didn't hack him, your alzheimers kicked in mid post
 
2009-10-07 04:10:30 PM
Swordfish
 
Displayed 50 of 202 comments

First | « | 1 | 2 | 3 | 4 | 5 | » | Last | Show all



This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »






Report