Free WordPress Security Mini Course

Comments   |   Personal Security Tips

A New (and Simple) Strategy for Secure, Essentially Unbreakable Passwords

A recent article on bNET.com released some fantastic information about how to strengthen your simple password that you likely use on many of your sites.

Why are you talking about Passwords again??

Because you haven’t changed your passwords yet you dummy! In my position, I deal with a lot of people and their various websites. Any time I want to make edits to their server, their website, their mail records, etc. I have to ask them for their password. Some people hesitate to hand over their password to me, but most people quickly pass it off like it’s 10 cent candy. Sure I’ve built a level of trust with them and I’m an honest guy, but it still amazes me that they just pass off their password so quickly without asking any questions.

After I get done with that particular task that required a password, there is usually another task that involves asking them for another password.

Guess what? They often say “It’s the same password as the one I already gave you!”

Yikes! They have used the same password for their email, their website backend, even their domain registrar. Heck, I wonder if they used the same password for their bank accounts!

So why don’t people use different passwords?

Barely a day goes by lately without some news of an email server, bank, or online service getting hacked. But people generally don’t change their passwords because it’s just too darn difficult to remember multiple passwords.

This recent article gives you a way to use your simple, common passwords that you like to use on all your sites by combining them into something ultra secure.

Essentially, a single word is useless as a password because it is easily cracked using common hacking methods. But by stringing together a few words using a separator like a space, dash, or similar character can catapult a phrase like “this is fun” into secure territory, as you can see in this chart:

this-is-fun password

In fact, the bNET article goes on to say that by using 3 words in a password, it can take over a million years to crack using brute-force or almost 40 million years using a dictionary attack. That makes this approach 10 times more secure than using a gibberish string like J45sx>2.

You can read more about this topic here:

http://www.bnet.com/blog/businesstips/a-new-and-simple-strategy-for-secure-essentially-unbreakable-passwords/11233?promo=713&tag=nl.e713

http://lifehacker.com/5796816/why-multiword-phrases-make-more-secure-passwords-than-incomprehensible-gibberish

http://www.baekdal.com/tips/password-security-usability

Leave a Reply