Your Passwords Don't Suck — It's Your Policies 487
First time accepted submitter eGuy writes "ZDNet sparked a debate about password policies when John Fontana wrote about my open source (LGPL) password policy project that rewards XKCD-like passwords. Steve Watts of SecurEnvoy replies that it is too little, too late. What think ye? Is there hope for passwords?"
This is too simple to fix (Score:4, Funny)
Every time a see a password like this "12ol3jkh!!asrdfw9g8" or "^TFGY78UH" I want to vomit. Why not make your password something like "This chicken tastes like shit!"
Re:This is too simple to fix (Score:3, Funny)
another password revealed (Score:5, Funny)
Re:This is too simple to fix (Score:5, Funny)
Every time a see a password like this "12ol3jkh!!asrdfw9g8"
That's the password on my luggage!
Re:Wrong (Score:5, Funny)
Of course, your fiendishly clever non-standard spelling of et cetera would fool any such dictionary attacks.
Re:testing the password (Score:5, Funny)
wait for the beta
Re:This is too simple to fix (Score:4, Funny)
Where the xkcd password "Correct horse staple battery" would take 72624497 centuries to crack. That is if it wasn't already on the internet for everyone to see and try.
Yep. (nods). Now if you excuse me, I have to change my password right now.
Re:This is too simple to fix (Score:3, Funny)
Re:Unreliable cracking estimate (Score:4, Funny)
Since when is coprophage rare? This is the Internet.