• BCsven@lemmy.ca
    link
    fedilink
    arrow-up
    3
    ·
    3 months ago

    Use a yubikey, password is useless unless hacker can obtain your physical key also

  • fool@programming.dev
    link
    fedilink
    arrow-up
    2
    ·
    3 months ago

    In 2003, Bill Burr wrote “NIST Special Publication 800-63. Appendix A” – a security document that recommended passwords be changed every 90 days, and have irregular caps and special characters. When asked about it, and the resultant trends in people adding !@#$%^&*() to the end of their passwords, Burr said something enlightening:

    “Much of what I did I now regret.”

    Lmao

    so yeah I hit the Bitwarden generate button and forget

    • Tyoda@lemm.ee
      link
      fedilink
      arrow-up
      8
      ·
      3 months ago

      3 is actually a really easy number to guess (first prime after 2, number of people in a threesome, etc.). You should probably go with 4.

  • Ephera@lemmy.ml
    link
    fedilink
    arrow-up
    4
    ·
    3 months ago

    2013-06-13T17:34

    Alright, I have no idea. It’s probably been around ten years since I’ve deleted it.

    • DontTakeMySky@lemmy.world
      link
      fedilink
      arrow-up
      12
      ·
      3 months ago

      If you’re memorizing your password, don’t change it too often because it’ll just confuse you and encourage you to pick easy to remember passwords which are less secure. Change your password if you hear about a hack, or have reason to suspect your password got leaked. Otherwise there’s no need.

      If you have a password manager though, go off. Change it as often as you’d like.

      (Also 2FA, unique passwords per site, etc etc etc)

  • Thebeardedsinglemalt@lemmy.world
    link
    fedilink
    arrow-up
    3
    ·
    3 months ago

    Last week. In an effort to de-google as much of my PC as I could the only chromium based browser I have is edge. I used librewolf for general browsing (unlock) and Firefox for porn (unlock and no script). Librewolf has known issues working with YouTube which will cause even the highest speed internet to have YouTube be choppy AF. So I used edge for YouTube. But there is a known big in edge that logs you out of everything when you close the browser. And after a dozen times of 2FA logging in I just said fuck it and changed my Gmail password…and can’t close edge of I want to continue to watch certain channels

  • DavidDoesLemmy@aussie.zone
    link
    fedilink
    arrow-up
    2
    ·
    3 months ago

    A couple of years ago. It’s like 30 random characters generated by a password manager, and i have 2fa on. Far more secure than my silly emails warrant. There’s not much there worth stealing.

  • bandwidthcrisis@lemmy.world
    link
    fedilink
    arrow-up
    2
    ·
    3 months ago

    Years ago. Google changes the ways to sign in more frequently. 2FA messages, authenticator, then confirming sign-in on a separate device, which now seems to have been standardized as passkeys.

  • zxqwas@lemmy.world
    link
    fedilink
    arrow-up
    1
    ·
    3 months ago

    I try to change it every other year or so. Then I forget it because I did not type it in and have to reset it to the old one.

    After 5 times of this I’ve just given up and won’t change it until my password is in a common password dictionary