this post was submitted on 27 Sep 2024
45 points (97.9% liked)

Asklemmy

43893 readers
1306 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy πŸ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago
MODERATORS
all 44 comments
sorted by: hot top controversial new old
[–] AlternateRoute@lemmy.ca 36 points 1 month ago (1 children)

It is unique and I have MFA enabled so it hasn’t changed in a very long time. As per current security best practices.

[–] UltraGiGaGigantic@lemmy.ml 33 points 1 month ago

Nice try hackerman.

[–] sub_ubi@lemmy.ml 25 points 1 month ago* (last edited 1 month ago) (2 children)

2024-01-22T12:29:54

CHANGED passw0rd123! TO passw0rd1234!

[–] TechieDamien@lemmy.ml 22 points 1 month ago (2 children)

Oh cool, Lemmy automatically obfuscates your password. All I see is *************!

[–] cobysev@lemmy.world 21 points 1 month ago (1 children)
[–] TwinTusks@bitforged.space 3 points 1 month ago

******* here

[–] TwinTusks@bitforged.space 2 points 1 month ago* (last edited 1 month ago)

*************!

All I see is **************

[–] arthur@lemmy.zip 2 points 1 month ago

Much more secure πŸ‘πŸΎ

[–] bbuez@lemmy.world 17 points 1 month ago (2 children)

Just changed it to hunter3, thought it was time I should upgrade security

[–] I_Miss_Daniel@lemmy.world 12 points 1 month ago

But I'm only seeing *******. I guess that's because it's your password not mine.

(rip bash.org)

[–] Tyoda@lemm.ee 8 points 1 month ago

3 is actually a really easy number to guess (first prime after 2, number of people in a threesome, etc.). You should probably go with 4.

[–] ouRKaoS@lemmy.today 17 points 1 month ago (2 children)

I just use the last 12 digits of pi for all my passwords. So easy to remember!

[–] InternetCitizen2@lemmy.world 11 points 1 month ago

So you found them huh?

[–] 0_0j@lemmy.world 2 points 1 month ago

Lol, like there is.

[–] SpaceNoodle@lemmy.world 10 points 1 month ago
[–] xmunk@sh.itjust.works 7 points 1 month ago

Five minutes after reading this post.

Six months ago, as the wrong password message happily reminds me regularly.

[–] Blackout@fedia.io 4 points 1 month ago

stardate 41153.7

[–] Ephera@lemmy.ml 4 points 1 month ago

2013-06-13T17:34

Alright, I have no idea. It's probably been around ten years since I've deleted it.

[–] 30p87@feddit.org 4 points 1 month ago

2023-01-29T16:23

Last week. In an effort to de-google as much of my PC as I could the only chromium based browser I have is edge. I used librewolf for general browsing (unlock) and Firefox for porn (unlock and no script). Librewolf has known issues working with YouTube which will cause even the highest speed internet to have YouTube be choppy AF. So I used edge for YouTube. But there is a known big in edge that logs you out of everything when you close the browser. And after a dozen times of 2FA logging in I just said fuck it and changed my Gmail password...and can't close edge of I want to continue to watch certain channels

[–] vovo@lemmy.dbzer0.com 3 points 1 month ago
[–] ____@infosec.pub 3 points 1 month ago (1 children)

What Google password?

I don’t intend to browse RMS-style, but I have zero need of a Google account, nor of the major search engines directly.

I just add layers between myself and that particular company. I still can get their data, but without the creep factor.

Mostly.

It’s an imperfect solution, but I’m more comfortable with access by proxy than direct access.

[–] pumpkinseedoil@sh.itjust.works 2 points 1 month ago (1 children)

Which phone OS are you using?

[–] ____@infosec.pub 1 points 3 weeks ago

IOS presently, partially to simplify de googling.

[–] BCsven@lemmy.ca 3 points 1 month ago

Use a yubikey, password is useless unless hacker can obtain your physical key also

[–] andrewta@lemmy.world 3 points 1 month ago (2 children)

You are supposed to do that?

Side note I try to do that about once a year.

[–] KeepFlying@lemmy.world 12 points 1 month ago

If you're memorizing your password, don't change it too often because it'll just confuse you and encourage you to pick easy to remember passwords which are less secure. Change your password if you hear about a hack, or have reason to suspect your password got leaked. Otherwise there's no need.

If you have a password manager though, go off. Change it as often as you'd like.

(Also 2FA, unique passwords per site, etc etc etc)

[–] llii@discuss.tchncs.de 3 points 1 month ago

No, you’re not.

[–] JimmyBigSausage@lemm.ee 2 points 1 month ago (2 children)
[–] AdNecrias 3 points 1 month ago (1 children)

Statistically, that's what's on your phone.

[–] imnotfromkaliningrad@lemmy.ml 2 points 1 month ago (2 children)
[–] AdNecrias 2 points 1 month ago

And a few more, and apples. But statistically...

[–] 0ops@lemm.ee 1 points 1 month ago

Graphene os is a niche within a niche. I'd never even heard of it before I joined lemmy, and I'm no stranger to custom roms.

[–] 0ops@lemm.ee 1 points 1 month ago (1 children)

You might as well ask "Who drives f150's?" A metric fuck-ton of people

[–] JimmyBigSausage@lemm.ee -1 points 1 month ago (1 children)
[–] 0ops@lemm.ee 1 points 1 month ago

If you're being earnest, it's been the best selling vehicle every year in the US for four decades straight.

[–] LostXOR@fedia.io 2 points 1 month ago

A bit over two months ago. I try to go through my password manager to change all my passwords and clean up unused accounts a couple times a year.

[–] DavidDoesLemmy@aussie.zone 2 points 1 month ago

A couple of years ago. It's like 30 random characters generated by a password manager, and i have 2fa on. Far more secure than my silly emails warrant. There's not much there worth stealing.

[–] bandwidthcrisis@lemmy.world 2 points 1 month ago

Years ago. Google changes the ways to sign in more frequently. 2FA messages, authenticator, then confirming sign-in on a separate device, which now seems to have been standardized as passkeys.

[–] fool@programming.dev 2 points 1 month ago

In 2003, Bill Burr wrote β€œNIST Special Publication 800-63. Appendix A” -- a security document that recommended passwords be changed every 90 days, and have irregular caps and special characters. When asked about it, and the resultant trends in people adding !@#$%^&*() to the end of their passwords, Burr said something enlightening:

"Much of what I did I now regret."

Lmao

so yeah I hit the Bitwarden generate button and forget

[–] zxqwas@lemmy.world 1 points 1 month ago

I try to change it every other year or so. Then I forget it because I did not type it in and have to reset it to the old one.

After 5 times of this I've just given up and won't change it until my password is in a common password dictionary