Computer Security with Easy Passwords?
Stop the Password Madness!
I divide sites into three security levels, based on how much personal, professional or financial damage can be caused if someone guesses my password. I try to have one password for all the sites on each level.
Level one is no password: I usually do not register for forums that allow anonymous reading and posting. If you see a post from Anonymous Coward somewhere, that's possibly me.
Level two passwords, reasonably secure: If I register for a newspaper website, a blog, or forum I use a pseudonym, false address information, and if possible I use the same password I use at all the other level two sites. It has enough letters (8) to satisfy most security schemes, but it's nothing fancy. I only have to remember one password, wherever I go, whoever I am claiming to be.
These passwords would be breakable if someone made enough attempts, but simple substitutions of numbers for letters make them hard to crack. Instead of applesauce, for example, I use appl3sauc3.
Level three passwords, most secure: I use my strongest passwords on websites where I make money, spend money, or store money. Inserting numbers and punctuation marks in ordinary words makes it difficult to guess or even to crack using a computer to generate and test passwords.
Here's how to make a strong password: Take two short words and glue them together with a non-alphanumeric character. Then replace a couple of letters with a number that resembles the letter: the letter "o" become zero; "i" becomes the numeral 1, "s" becomes 5, etc. Examples: ice cream becomes 1ce^cream, base ball becomes ba5e*ba11.
Bilingual passwords are even stronger. To guess the password you have to know which languages to guess in. Bilingual examples: gat0=chat (Spanish/French words for cat); perr0~d0g (Spanish/English).
Of course, this can't protect you if you click on a link in an email and enter your account details, including your super-secure password, in whatever page your browser lands on. Beware of pfishing attempts.
Secure the Security Questions: Security questions are supposed to make it possible for you to get a new password if you forgot the current one. However, security questions usually ask things that can be discovered about you, such as your mother's maiden name, where you met your spouse, or your favorite TV show. Governor Sarah Palin's Gmail account was accessed when the snooper reset the password using publically available or easily guessible answers to her security questions.
The solution is to give false, but easily rememberable answers to these questions. If you always wear blue, your first pet has a memorial page on dogsrule.com and your MySpace page has a Chicago Bears theme ... just say your favorite color is vermilion, your first pet's name was Zaragosa, and your favorite sport is quoits.
Passwords you don't want to use: Never use a password that relates to your life, family, pets, profession, hobbies, or on-line nicknames. They are too easy to guess if someone researches your activity. Remember how Sarah Palin's gmail password was discovered?
Published by Tsu Dho Nimh
I'm a long-time technical writer with time to spare. I'm an omnivorous reader, a superb researcher, and a very fast writer. I'm also a good photographer. I'm fascinated by medicine, and annoyed by quack... View profile
- Stealing Your Life: The Ultimate Identity Theft Prevention Plan Book Review"Stealing Your Life: The Ultimate Identity Theft Prevention Plan" is entertaining as well as enlightening.
- Identity Theft Using Active Duty Military as the TargetRed Cross Scam Strikes at Military Personnel and their Families, using fear to gain information needed to commit identity theft.
- Revealing Lost or Hidden Passwords on FirefoxIf you have ever needed to check out on the kids to see what they are doing on the internet and cannot find their passwords, I have the solution for you. It is simple using firefox's browser.
- Identity Theft and Your Unused Email AddressMany people suffer from identity theft. Most common times for this to happen is after a divorce. One of the least expected places to search for identity theft is an email address that you shared with your spouse or...
- How to Protect Yourself from Identity Theft at Your BankSome simple and effective ways on protecting yourself from identity theft in your bank, and how to avoid a major and well known crime in today's world.
- Speed Up Your Computer
- What You Need to Know About Identity Theft to Protect Your Credit Report
- Computer Security Basics 101
- Prevent Identity Theft
- Understanding and Preventing Identity Theft
- 4 Must Do Steps After an Identity Theft
- Identity Theft: Who Are the Victims?
- Keep it simple and you can remember it.
- Lie whan you answer the security questions, but remember the lies you told.
- Most accounts are "hacked" because you gave away the password.
11 Comments
Post a CommentI picked up two pearls I can use from this article: Billingual passwords and fake answers to security questions. Thanks.
Good article. I will have to try some of your suggestions. Thank you for sharing.
Great article, thanks for sharing.
These are really helpful tips. Thanks!
Good advice that I largely follow...I like the bi-lingual suggestion especially.
Good suggestions, Tsu.
TY.......I like your suggestions......looks like I'll be making some changes. Thanks for your help in the Writer's Forum today.
Hubby has a super intense secure password protocol at work... and he has to change his passwords regularly so he's developed his own system. But with so many hackers out there and ease of obtaining even basic info on a person, you need to protect yourself by making a password that's easy for you, but not for everyone else. I liked the lingual ones... those wouldn't be as easy to guess cuz who would think you'd be typing in a foreign language word?
You've helped me to evaluate how and when to create passwords of various levels of security- and how passwords can be adapted to the site purposes and user needs.
Nice read, thanks