Limited-Time Donation Special!
Upgrade to Snow for $20 USD and receive a free copy of Oblivion Light ($5 discount).
Upgrade to +Blizzard for $35 USD and receive a free copy of Oblivion Light ($15 discount).

Please visit the thread below for more details.
CLICK HERE

Contact @Davlin with questions or comments.

Jump to content
Sign in to follow this  
Davlin

Generating a Strong Password

Recommended Posts

A password is your first and last line of defense in computer security. Typically people choose bad passwords because they are easy to remember. However, you wouldn't leave the door to your home unlocked because it is too much of a hassle to unlock it before you open the door, would you? A weak password is the same thing.

Using words that appear in a dictionary, in any language, make cracking your password that much easier. Adding numbers to dictionary words doesn't increase the password's strength at all if it is based on a dictionary word. Even with character replacements like capital letters and non-alphanumeric symbols, you're not getting a stronger password.

A true strong password should consist of 8 or more characters and be part of a "passphrase". A passphrase consists of a phrase that has special meaning to you, therefore making it easier to remember. For example:

Mickey Mouse for President. It would be awesome!

One simple approach to create a better password is to take the first letter of each word in your passphrase, giving you:

mmfpiwba

That looks seemingly random, and it's a fairly hard password to crack. But why not make it harder by using the punctuation from the sentence?

mmfp.iwba!

Now that is a much harder password to crack. Why stop there, though? Let's make it even stronger by capitalizing some letters and adding numbers.

MM4P.Iwba!

Now you have truly difficult password to crack; but is still fairly easy to remember. To make it even stronger, you can salt it with non-alphanumeric character replacements for greater difficulty. For example, replacing an "a" with a "@" leaving you with:

[email protected]!

NOTE: Some web hosts do not allow the following symbols to be used in the password (second symbol is a space):

? ^'":$&><~;`

Typically, the following symbols are acceptable:

[email protected]#%*)(_-=+|[]{}.,/


Do's and Do Not's of Password Security:
 
Do:

  • Combine letters, symbols, and numbers that are easy for you to remember and hard for someone else to guess.
  • Create pronounceable passwords (even if they are not words) that are easier to remember, reducing the temptation to write down your password.
  • Try using the initial letters of a phrase you love, especially if a number or special character is included.
  • Take two familiar things, and then wrap them around a number or special character. Alternatively, change the spelling to include a special character.

Do not:

  • Use personal information such as derivatives of your user ID, names of family members, maiden names, cars, license plates, telephone numbers, pets, birthdays, social security numbers, addresses, or hobbies.
  • Use any word in any language spelled forward or backward.
  • Tie passwords to the month. For example, don't use "Mayday" in May.
  • Create new passwords that are substantially similar to ones you've previously used.

 

NOTE: No password is 100% secure. You still must take basic security precautions such as not sharing your password with others, changing it frequently and changing it immediately if you believe it may have been compromised.
  • Upvote 4
  • Downvote 1

Share this post


Link to post
Share on other sites

Glad folks are finding some use for this tutorial (despite it being buried at the bottom of the forum). :D

I use 1Password to generate my secure passwords. It also has 256 bit AES encryption for when I'm browsing the web. 'I'm not paranoid, I'm just precautious' yea right. :D
  • Upvote 1
  • Downvote 1

Share this post


Link to post
Share on other sites

This is a great tutorial davlin.. I usually just use the first thing that comes to my head.. Then I do what you said to do.

  • Upvote 2
  • Downvote 1

Share this post


Link to post
Share on other sites

Thank you for your tutorial Davlin, very useful!

Like DragonVoid said, I usually just use the first thing that comes to my mind too.

Share this post


Link to post
Share on other sites

I don't usally trust password generator website (they can store your password | the one you generated), btw great tutorial, i will keep this in my mind :3

Edited by ninetailz

Share this post


Link to post
Share on other sites

I recommend LastPass for managing passwords. With a password, you can move your all password on your side.

Share this post


Link to post
Share on other sites

I use my email address password from school. 7 random letters and numbers. Will never forget it after 5 years of it being drilled into my brain.

Share this post


Link to post
Share on other sites

Pretty great tutorial. Most of the time I've been using random password generators which is incredibly useful. Anyways though, Thanks Davlin. :)

Share this post


Link to post
Share on other sites
What do you think? Remember the human.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.

×