December 15, 2006
A little bit on passwords
Posted Dec. 15, ’06, 6:38 AM PT by Derik DeLong
Category | Security
This isn’t strictly Mac related, but passwords are a fact of life, regardless of what platform you’re on. That goes double if you do anything online. Bruce Schneier, one of the lead security technology experts of our time, did a little breakdown of some MySpace passwords (retrieved by a recent phishing attack).
His blog entry is chock full of useful statistics and lessons in what not to do with passwords. A few quick rules of thumb out of my own book:
- Longer is better, just as long as you can remember it. If you have to write it down or string together a lot of dictionary words, making it longer isn’t helping.
- Mix letters and numbers. Don’t use just one or the other and if you use both, do it in earnest. Attaching “1” at the end of an all letter password isn’t helping.
- Don’t use common words or phrases.
That said, the top password chosen in the sample was “password1”. That’s not a particularly bright password. Here’s a few other common ones: abc123, myspace1, password, blink182, qwerty1, 123abc, baseball1, football1, 123456, soccer, monkey1, liverpool1, princess1, jordan23, slipknot1, superman1, iloveyou1 and monkey. Note the adding of “1”. I removed one of the passwords from Bruce’s list. Enterprising individuals will be able to figure out why.
The good news is that compared to a corporations password database, this sample is much better in terms of security. Considering how much less important MySpace is, it’s a good sign that kids are learning the lesson earlier.
For Mac users, we need to keep password strength in mind when choosing ours. It’s even more important if you have any services from your Mac exposed to the net, particularly the FTP, personal file sharing, or remote login services.
1 Comments
Leave a comment
Recent Entries
Ch-ch-ch-ch-changes afoot at MacUser
The Macalope Weekly: Leopards and monopolies and DRM! Oh, my!
Apple levels DMCA on iPodhash project
iPod touch users get second classed again with the omission of new Maps features
Apple Pro Applications Update 2008-004 makes your day
iTunes v8.0.2 comes riding on the coattails of iPhone firmware v2.2
About MacUser
MacUser is your source for news, info, and opinion about Apple, the Mac, and the iPod. Our dedicated team of bloggers covers everything that is relevant to Mac users — and, okay, some stuff that’s not quite relevant, but is still a lot of fun.
Subscribe/RSS
- Blog Posts
- Blog Comments
- Podcast (RSS) (iTunes)
Tip us off!
- Email: macuser [at] macuser [dot] com
Recent Comments 
- Dan Moren on iPod touch users get second classed again with the omission of new Maps features
- johnnydfred on iPod touch users get second classed again with the omission of new Maps features
- on iPod touch users get second classed again with the omission of new Maps features
- Neurotic Nomad on Apple levels DMCA on iPodhash project
- Dan Moren on iPod touch users get second classed again with the omission of new Maps features
- Me Again on iPod touch users get second classed again with the omission of new Maps features
Categories
- Apple (234)
- Advertising (162)
- Events (235)
- Huh? (182)
- Humor (259)
- News (148)
- People (258)
- Rivals (405)
- Speculation (167)
- Steve Jobs (172)
- Stores (206)
- Apple TV (58)
- Business (451)
- Games (143)
- Geekery (460)
- Hardware (935)
- Accessories (79)
- Intel Macs (162)
- Ihnatko (18)
- Internet (463)
- Legal (244)
- MacUser (94)
- Macalope (8)
- Money (177)
- Music (344)
- Podcasting (100)
- Photography (74)
- Security (246)
- Software (1544)
- Updates (538)
- Tips (352)
- Troubleshooting (189)
- Video (403)
- Windows (219)
- iPhone (199)
- iPod (602)
- iPod Accessories (96)
- iPod Software (61)
- iTunes (128)
- iTunes Store (443)
Archives
- November 2008 (91)
- October 2008 (138)
- September 2008 (151)
- August 2008 (177)
- July 2008 (175)
- June 2008 (171)
- May 2008 (185)
- April 2008 (234)
- March 2008 (217)
- February 2008 (215)
- January 2008 (239)
- December 2007 (169)
- November 2007 (164)
- October 2007 (187)
- September 2007 (167)
- August 2007 (195)
- July 2007 (152)
- June 2007 (223)
- May 2007 (243)
- April 2007 (286)
- March 2007 (288)
- February 2007 (250)
- January 2007 (266)
- December 2006 (244)
- November 2006 (293)
- October 2006 (307)
- September 2006 (250)
- August 2006 (268)
- July 2006 (288)
- June 2006 (293)
- May 2006 (297)
- April 2006 (351)
- March 2006 (366)
- February 2006 (110)
- January 2006 (107)
- December 2005 (23)
Mac Publishing Sites
Links
Very, very good article and I would like to see more like that.
People need to be made aware again.
Kudos.