Microsoft is now banning your stupid passwords

[RyanBrothwell]

Microsoft is now banning your stupid passwords

Microsoft has started banning passwords it deems are "too easy-to-guess".

[czc]

Hey thats cheating, microsoft shouldn't know our passwords.

[Cronus086]

Hey thats cheating, microsoft shouldn't know our passwords.

Microsoft rules the world

[AlphaJohn]

In this day and age who still use "words"

I swapped to actual sentences ages ago.

[PsychoFish]

I use the old BSD style passwords. Two unrelated words with a joining special character and number followed by a trailing number and special character combo.

[Avantar]

I use the old BSD style passwords. Two unrelated words with a joining special character and number followed by a trailing number and special character combo.

That sounds a bit hardcore. :-) Only one word BSD style with a number and special characters. Enough for me. I've got LPCS (Limited password character syndrome) Relates to the same as not being able to count past 6. Not all have the brain capacity of the Fish to remember it all!

[PsychoFish]

That sounds a bit hardcore. :-) Only one word BSD style with a number and special characters. Enough for me. I've got LPCS (Limited password character syndrome) Relates to the same as not being able to count past 6. Not all have the brain capacity of the Fish to remember it all!

Hahahaha, it's fun, cause you come up with passwords like :

[email protected]!

Working in Unix/Linux environments for years have made me used to passwords that consist of :

<word><char/number><char/number><word><char/number><char/number>

I usually explain it to people that have difficulty remembering *nix passwords (with my strong password requirements) to do something like:

<Verb><number><Noun><char> => Ate7Cookies!

The good old Dad joke makes for a nice default password Seven8Nine:-)

There, you have a new secure password

[Avantar]

Hahahaha, it's fun, cause you come up with passwords like :

[email protected]!

Working in Unix/Linux environments for years have made me used to passwords that consist of :

<word><char/number><char/number><word><char/number><char/number>

I usually explain it to people that have difficulty remembering *nix passwords (with my strong password requirements) to do something like:

<Verb><number><Noun><char> => Ate7Cookies!

The good old Dad joke makes for a nice default password Seven8Nine:-)

There, you have a new secure password

HaHa! Not too bad. It might work. I will never forget 7AteCookies3Times...wait Cookies8...got it Nine87 - Wait...I'll just make it One2Three :-)

Just kidding - Eight is scared of 7 because 789 - I am sure a few people used it in interviews back in the day. :-)

[AlphaJohn]

Nuff Said. Also with today's GPU power you can brute "Ate7Cookies!" within a week, but "I hate long passwords!" will take a tad longer and is a hell of a lot easier to remember.

[PsychoFish]

Nuff Said. Also with today's GPU power you can brute "Ate7Cookies!" within a week, but "I hate long passwords!" will take a tad longer and is a hell of a lot easier to remember.

Yup, hence :
in /etc/pam.d/common-password :
password required pam_cracklib.so minlen=12 lcredit=4 ucredit=4 dcredit=2 ocredit=2 difok = 6
password required pam_unix.so md5 remember=12 use_authtok

touch /etc/security/opasswd
chown root:root /etc/security/opasswd
chmod 600 /etc/security/opasswd

and in /etc/login.defs:

PASS_MAX_DAYS 90
PASS_MIN_DAYS 0
PASS_WARN_AGE 7
PASS_MIN_LEN 12

also in crontab
59 23 * * * /usr/sbin/update-cracklib