Password Rotation
Posted: Sat Oct 20, 2018 2:12 pm
Have you rotated your password recently? It is a good idea to rotate your passwords periodically and to never use the same password on all websites. I know this is painful to do, but it is worth it. Longer passwords are better than short ones, and passphrases are best of all. In fact if you use a passphrase you can incorporate the name of the website into the passphrase to make it unique for all sites. My favourite way to generate a passphrase is similar to this. (But not exactly this!)
I pick a memorable year: 1492 (when Columbus sailed the ocean blue) then a phrase you're going to use. Could be anything you can remember, but let's use: I like to walk my dog to LLORG.
Then I hold down the shift key while typing in my year, then I type the date to get:
!$("I like to walk my dog to LLORG.
All the password check sites say the above password is strong, and one tells me it would take a computer about 40 quindecillion years to crack this password (40 followed by 48 zeros).
There have been a lot of websites recently who had their databases hacked into and all of the user passwords stolen. One of them could be yours, and it would be a very good idea to change your passwords at least annually. We don't hold any personal data, and we don't have any problems with our DB, but I would hate to think someone is using the same password here that they use on their bank account!
There are of course "keyrings" software which will hold all your passwords so you can have very long complex ones. But however you manage your passwords, try to rotate them periodically.
I pick a memorable year: 1492 (when Columbus sailed the ocean blue) then a phrase you're going to use. Could be anything you can remember, but let's use: I like to walk my dog to LLORG.
Then I hold down the shift key while typing in my year, then I type the date to get:
!$("I like to walk my dog to LLORG.
All the password check sites say the above password is strong, and one tells me it would take a computer about 40 quindecillion years to crack this password (40 followed by 48 zeros).
There have been a lot of websites recently who had their databases hacked into and all of the user passwords stolen. One of them could be yours, and it would be a very good idea to change your passwords at least annually. We don't hold any personal data, and we don't have any problems with our DB, but I would hate to think someone is using the same password here that they use on their bank account!
There are of course "keyrings" software which will hold all your passwords so you can have very long complex ones. But however you manage your passwords, try to rotate them periodically.