|
AAAAAAH! You almost said a bad word! For Shame!
TTFN - Kent
|
|
|
|
|
Passwords are something we all have to deal with on a daily basis, and the advice has long been to use complex passphrases, to use unique passwords for each site and service, and to change them on a regular basis. But Microsoft Research has different ideas. OK then. Back to p@ssw0rd everywhere!
|
|
|
|
|
More passwords and the more complex the passwords, the more likely they are written on a sticky not and stuck to the monitor.
You'll never get very far if all you do is follow instructions.
|
|
|
|
|
One password to rule them all
One tool to bind them
One password for every form
And nobody will ever find them
.
|
|
|
|
|
|
Good they did not said you can have a blank password
|
|
|
|
|
Microsoft Research wrote: It's a trade-off between the level of security you want, and the amount of effort you want to put in. Yes, because those shady websites are surely hashing your password, and not storing it as plain-text. No, they're totally trustworthy, their not going to try and see if you used the same password for your bank.
..and despite Google and MS being able to recognize different IP's and whining that they need a telephone-number, I've had a breach in both when using a relative complex but short password.
My advice is to generate a GUID each time you need a password. You don't need to remember it, just to store it securely.
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Eddy Vluggen wrote: Microsoft Research wrote: It's a trade-off between the level of security you want, and the amount of effort you want to put in. Yes, because those shady websites are surely hashing your password, and not storing it as plain-text. No, they're totally trustworthy, their not going to try and see if you used the same password for your bank.
The advice is not to worry about low quality/reuse on low security sites.
Quote: The use and re-use of simple passwords for low-risk websites is not only not discouraged by the paper, but actively encouraged. Strong, difficult-to-remember password should be reserved for sites and services that pose a high risk.
If someone hacks derpblog.com and steals the PW I use for its propriety comment system they could impersonate me on herpblog.org. So what! That's all they could do to me. My banking password is unique; they most they could do with the crappassword is to DoS me by locking my account from failed attempts. Any idiot who knows what my bank is now and can guess what my user name is could do the same now.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
Eddy Vluggen wrote: generate a GUID
I pick a common word and run it through Base-64.
You'll never get very far if all you do is follow instructions.
|
|
|
|
|
Eddy Vluggen wrote: and despite Google and MS being able to recognize different IP's and whining
that they need a telephone-number
I don't know whether that practice improves security at all, but it is extremely annoying
|
|
|
|
|
I thought a1b2c3 was the one of choice. Not like
titinanabulatiune_algoilga2215%/\bijboque
which I'm using on one machine.
|
|
|
|
|
Cristian Amarie wrote: I thought a1b2c3 was the one of choice.
No no no, it's 1a2b_1b2b3_000destruct0.
(Too obscure?)
|
|
|
|
|
Too long. Let's pick on everyone playing Starcraft does:
1a2a3a4a
|
|
|
|
|
Microsoft has started boosting the free allowance of OneDrive, its cloud-based storage service, to one terabyte for subscribers to consumer and college student Office 365 plans. At this point, who needs a physical hard drive anymore? (Oh, right. Low connectivity. ffft! That never happens)
|
|
|
|
|
Not only "connectivity", but also "privacy". Not to mention that companies come and go, and that I would not want to see my data go down with a bankrupt company. Or a company that gets hacked and whose data is erased.
It's not even paranoid, but simply the sane thing to do.
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Cloud storage's getting cheap enough that just about anything short of your dvd/blueray rips can be backed up in multiple locations. In encrypted volumes if you're sufficiently paranoid.
While the initial upload and pulling it all down again is a pain; but the cloud shouldn't be your primary backup anyway. Dumping new pictures/etc into an online account as taken is still less of a hassle than mailing drives to your buddy across the country every few months for a distant offsite backup; and unless that person is also a geek it's much easier than convincing them to let you have a box running in their house 24/7 and making sure it stays online.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
Why a student needs a terabyte anyway? When I was in college I barely visited by room once every 2-3 days. Porn was not watched - was done !
|
|
|
|
|
We have finally finished fine-tuning the new version of dotPeek, our free .NET decompiler and assembly browser. Please download dotPeek 1.2 that receives a new superpower and learns how to walk in symbol server shoes. Remember Reflector? Yeah. Good times. Remember when they started charging for it? Here's an alternative.
|
|
|
|
|
|
"A phone that works". just 2 screen blockings in 18 months. Apps sucks, but they all suck on all platforms (asking for my liver/wife/bank account/burrowed banelings to post on FB etc).
|
|
|
|
|
|
I have one of these too, mainly to screw around with
It's not offering me the 8.1 update though, anything special I need to do? I'm in the UK on EE
|
|
|
|
|
Probably enable developer mode. I don't remember how (a colleague told me how to do it and I forgot it immediately), it should be somewhere in advanced settings.
|
|
|
|
|
Microsoft channel partners need to urgently redefine and evolve their businesses so that they can resell the company’s cloud computing products, according to Chief Operating Officer Kevin Turner. "There's a storm coming, Mr. Wayne."
|
|
|
|
|
Call me an old fogey, but mobile yes, 100% cloud no. I mean, I'm happy when there's signal or a wifi I can connect to, but I cannot and do not want to rely on an internet connection to be productive. It's too damn fragile, and I don't believe that it's resilient at all to some gov't (as we've seen) shutting it down whenever it wants to impose it's big stick.
Now, where'd I put my CB radio???
Marc
modified 15-Jul-14 19:27pm.
|
|
|
|