I've personally grown to hate the security theatre of rotating my bank passwords every six months, especially because of requirements like "must contain one uppercase, one symbol, one lowercase, one special case and the blood of a unicorn."

When mathematically, a simple, grammatically incorrect sentence of 25 characters is much harder for a machine to crack than a gibberish 8-character password with symbols.

Entropy loves length.

I love the idea that the most secure key to your digital life could just be a weird little poem or an inside joke that only you know. Security doesn't have to be painful.

#infosec #passwords #cybersecurity #UX #security #sysadmin #programming #foss #linux #privacy #enshittification #reading #finance

I've personally grown to hate the security theatre of rotating my bank passwords every six months, especially because of requirements like "must contain one uppercase, one symbol, one lowercase, one special case and the blood of a unicorn."

When mathematically, a simple, grammatically incorrect sentence of 25 characters is much harder for a machine to crack than a gibberish 8-character password with symbols.

Entropy loves length.

I love the idea that the most secure key to your digital life could just be a weird little poem or an inside joke that only you know. Security doesn't have to be painful.

#infosec #passwords #cybersecurity #UX #security #sysadmin #programming #foss #linux #privacy #enshittification #reading #finance

New year, new password reset at work...

My new password is "NCSC advises against regular password expiry"

Actually TBF that was my old one, my new one is "NCSC advises against regular password expiry2"

#NCSC #passwords #InfoSec

New year, new password reset at work...

My new password is "NCSC advises against regular password expiry"

Actually TBF that was my old one, my new one is "NCSC advises against regular password expiry2"

#NCSC #passwords #InfoSec

Someone on Reddit asked if "pw" is a good enough password for a local system account.

This is where knowing your threat model and adversary is important.

If your adversary is your cat walking across your keyboard, then it's probably fine.

If your adversary is a roommate that you don't fully trust, then probably not.

If it's on a desktop computer that sits permanently on the floor, see above.

If it's a laptop that frequently travels between home and work, maybe not.

#passwords

Someone on Reddit asked if "pw" is a good enough password for a local system account.

This is where knowing your threat model and adversary is important.

If your adversary is your cat walking across your keyboard, then it's probably fine.

If your adversary is a roommate that you don't fully trust, then probably not.

If it's on a desktop computer that sits permanently on the floor, see above.

If it's a laptop that frequently travels between home and work, maybe not.

#passwords

ESET will retire its Password Manager on Oct 18, 2027, with all stored data deleted after shutdown. 🔐

Users must export credentials and migrate early as renewals and activations face strict cutoffs. ⏳

🔗 https://proton.me/blog/eset-password-manager

#TechNews #Security #Privacy #Data #Cybersecurity #Encryption #OpenSource #Passwords #Migration #UserRights #Accountability #Tech #DigitalSafety #ESET #Password #PasswordManager

ESET will retire its Password Manager on Oct 18, 2027, with all stored data deleted after shutdown. 🔐

Users must export credentials and migrate early as renewals and activations face strict cutoffs. ⏳

🔗 https://proton.me/blog/eset-password-manager

#TechNews #Security #Privacy #Data #Cybersecurity #Encryption #OpenSource #Passwords #Migration #UserRights #Accountability #Tech #DigitalSafety #ESET #Password #PasswordManager

This piece by @Edent is more than three years old but it contains plenty of good points about digital continuity and contingency.

https://shkspr.mobi/blog/2022/06/ive-locked-myself-out-of-my-digital-life/

#security #infosec #InformationSecurity #passwords

This piece by @Edent is more than three years old but it contains plenty of good points about digital continuity and contingency.

https://shkspr.mobi/blog/2022/06/ive-locked-myself-out-of-my-digital-life/

#security #infosec #InformationSecurity #passwords

"We tend to assume that the younger generations online are digital natives — having grown up immersed in the online world, they possess an innate understanding of cybersecurity and its risks.

However, our research has debunked this misconception: In fact, the password habits of an 18-year-old are strikingly similar to those of an 80-year-old."

https://nordpass.com/most-common-passwords-list/

#news #TechNews #technology #security #passwords

"We tend to assume that the younger generations online are digital natives — having grown up immersed in the online world, they possess an innate understanding of cybersecurity and its risks.

However, our research has debunked this misconception: In fact, the password habits of an 18-year-old are strikingly similar to those of an 80-year-old."

https://nordpass.com/most-common-passwords-list/

#news #TechNews #technology #security #passwords

Thieves steal $100M in jewels from Louvre after museum used own name as surveillance password.
French cybersecurity audit revealed museum ran outdated Windows Server 2003 software with unguarded rooftop access
https://www.foxnews.com/tech/thieves-steal-100m-jewels-from-louvre-after-museum-used-own-name-surveillance-password #globalmuseum #museums #Louvre #security #passwords

Distributed.net stores #passwords in plain text. I just received the following email.