There's evidence that changing password frequently worsens security, because people start writing it down etc., and NIST (the national standard-setting organization for IT) recommends against periodic password changes.
-
-
-
Yep. But that doesn't stop my cancer center and the other hospital I work at from requiring that I change my password every 6 months. At least my university stopped the madness. If you pick an adequately secure passphrase (rules are provided), you never have to change it.
- Show replies
New conversation -
-
-
there's pretty much widespread consensus in the security community that as far as the evidence we have says, changing passwords regularly is either more harmful or at least not improving security.
-
this sentiment is also shared by FTC https://www.ftc.gov/news-events/blogs/techftc/2016/03/time-rethink-mandatory-password-changes … and NIST https://pages.nist.gov/800-63-3/
End of conversation
New conversation -
-
-
Every 90 days for us. For each platform. You can't reuse one from another platform, either.
-
Yep. Same here, but they have no way of knowing the passwords I've used in the past on other platforms; so I have no idea how they'd enforce that rule.
- Show replies
New conversation -
-
-
This comic is funny and it was great at the time, but dictionary attacks have made it somewhat obsolete. https://www.google.com/amp/s/www.techrepublic.com/google-amp/article/brute-force-and-dictionary-attacks-a-cheat-sheet/ …
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
You want passwords on post-it notes in the desk drawer? Cause this is how you get passwords on post-it notes i the desk drawer.
-
My password protocol is this: FnameLnameJerseynumber of my current favorite member of the seahawks. It has to change every 90 days and I can't re-use them but the roster changes a lot so plenty of options to mine.
End of conversation
New conversation -
-
-
And then there's the inability to copy/paste your password into a password field.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
