Does Your Password Suck? Maybe it’s Time to Upgrade.

March 5, 2010

Just about everything you use wears out over time. Yet some people feel the need to use the same password for years on end. I have followed a few articles over the last few months and it seems that password usage best practices are hard to get to end users—between the Hotmail Scam that revealed the most common password is "123456" to the ongoing surge of phishing sites I see in my email every day. Here at SoftLayer we provide server security scanning automatically in the portal, which is used all the time. But, some of those same users do not review their personal security policy involving their login accounts.

In the customer portal over the years we have added numerous security upgrades to help alleviate password style attacks, including: the addition recently of the Verisign Identity Protection; and, some of the past changes like security questions, IP restrictions, and failed password attempt throttling. We are trying to do our part securing your account, but we need help from you as the end user by periodically updating your password and other security requirements. The chain is only as strong as its weakest link. Now go change your password! Here are a few simple guidelines to get you started:

Good Choices:

  • Make it as long as possible
  • Use as many different characters as possible
  • Do not use words listed in standard dictionaries as your password

Things not to do:

  • Write your new password on a sticky note and attach it to your monitor
  • Use one of the top 500 passwords
  • Share your brand new password with friends

The bad guys are getting smarter, the end users (that means you) need to step it up too.

Offsite References:

-Dorian

Comments

March 6th, 2010 at 8:56am

I think that it is correct. Use strong passwords and change password often. This is why I use password management software. Use Lastpass if you are multiplatform or Sticky Password if you are Windows only.

http://www.stickypassword.com

March 10th, 2010 at 6:03am

Microsoft ROCKS!!! I feel so bad when people say bad things about microsoft! Apple looks like a toy, and Microsoft is the best!

March 29th, 2010 at 2:23pm

123456? That's amazing! I have the same combination on my luggage!

Leave a Reply

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • You can enable syntax highlighting of source code with the following tags: <pre>, <blockcode>, <bash>, <c>, <cpp>, <drupal5>, <drupal6>, <java>, <javascript>, <php>, <python>, <ruby>. The supported tag styles are: <foo>, [foo].
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

Comments

March 6th, 2010 at 8:56am

I think that it is correct. Use strong passwords and change password often. This is why I use password management software. Use Lastpass if you are multiplatform or Sticky Password if you are Windows only.

http://www.stickypassword.com

March 10th, 2010 at 6:03am

Microsoft ROCKS!!! I feel so bad when people say bad things about microsoft! Apple looks like a toy, and Microsoft is the best!

March 29th, 2010 at 2:23pm

123456? That's amazing! I have the same combination on my luggage!

Leave a Reply

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • You can enable syntax highlighting of source code with the following tags: <pre>, <blockcode>, <bash>, <c>, <cpp>, <drupal5>, <drupal6>, <java>, <javascript>, <php>, <python>, <ruby>. The supported tag styles are: <foo>, [foo].
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.