How Often Should You Change Your Password? 233
jhigh writes "Bruce Schneier asks the question, how often should you change your password? 'The primary reason to give an authentication credential — not just a password, but any authentication credential — an expiration date is to limit the amount of time a lost, stolen, or forged credential can be used by someone else. If a membership card expires after a year, then if someone steals that card he can at most get a year's worth of benefit out of it. After that, it's useless.' Another reason could be to limit the amount of time an attacker has to crack the password, but Bruce's analysis seems on target."
Whenever you... (Score:5, Funny)
Why Use a Password? (Score:4, Funny)
Are you hiding something?
Re:All sounds pretty reasonable (Score:1, Funny)
Just go from password1 to password9 then loop back to password1. If they keep a list of previously used passwords, just keep adding one.
I'm now at password5842, thanks to our extremely efficient security department!
Just like a toothbrush (Score:4, Funny)
"Use it regularly, change it frequently, and don't share it with anyone!"
Re:What's the point? (Score:4, Funny)
Re:This isn't Sam's club (Score:2, Funny)
If you have passwords for a couple dozen systems (very easy) and each of them requires you to change your password every 3 months, you're going to start forgetting them. So you don't, you're going to start writing them down or storing them in some way. Or you're going to increment a number in your password, so it's still basically the same. Or you're going to use the same password for slashdot and faceboook.com (see that? it's a spoof site designed to steal passwords) and your bank account.
Thanks, man. I quickly logged in and changed my faceboook and bank passwords. You saved me a great deal of hassle and money!
Answer: Never! (Score:2, Funny)
Seriously I've used "1234" on all my email accounts and my root admin account for years and never had the problem. ;?>I ALW7H;
Hold a sec. My router is going a little crazyF8($&#Rin85M3$%
s fpjl
[CARRIER LOST]
Obligatory XKCD [Re:Hundreds of passwords...] (Score:3, Funny)
Speaking of which, I'm surprised nobody has posted the link to the relevant xkcd yet.
http://xkcd.com/792/ [xkcd.com]
Re:To Change or Not To Change (Score:5, Funny)
nobody uses AFSDWER$fq34agfre as a password
Great, now I've got to go change all my passwords...
Use your dogs name (Score:2, Funny)
"Of course my password is the same as my pet's name.
My dog's name was Q47pY!3$H9x, but I change it every 90 days."
Re:Just like a toothbrush (Score:3, Funny)
If you're not sharing your condom with someone, you're using it wrong.