Barney's Blog

Blog archive

Failing Passwords

I think we all know most passwords are far too weak. So it is no real surprise that a report from Trustwave reached the same conclusion. In fact, many passwords are still PASSWORD, or the word with a number or two afterwards. This is what Verizon always used whenever I had to debug my DSL connection, which happened more often than a Brett Favre interception.

Even worse, these are often administrator passwords! Ouch.

Here's why so many passwords are so darn weak. Keeping up with a wealth of complex (but safe) passwords is a nightmare. How often have you tried to get into a system and the password you thought worked doesn't? And how do you keep track of all these various iterations, all the user names (which need to be complex because all the good ones are taken) and the accompanying passwords? Do you have them all written down? How secure is that?

The answer was always said to be single-sign on, but I have yet to see a system that singly signs on to enough to make it worthwhile.

What is your solution? Hopefully you'll send news I can use to [email protected]

Posted by Doug Barney on 03/16/2012 at 1:19 PM


Featured

  • Microsoft Warns IT Pros on Windows Netlogon Fix Coming Next Month

    Microsoft on Thursday issued a reminder to organizations to ensure that their systems are properly patched for a "Critical"-rated Windows Netlogon vulnerability before next month's "update Tuesday" patch distribution arrives.

  • Microsoft Nudging Skype for Business Users to Teams

    Microsoft on Thursday announced some perks and prods for Skype for Business unified communications users, with the aim of moving them to the Microsoft Teams collaboration service instead.

  • How To Improve Windows 10's Sound and Video Quality

    Windows 10 comes with built-in tools that can help users get the most out of their sound and video hardware.

  • Microsoft Offers More 'Solorigate' Advice Using Microsoft 365 Defender Tools

    Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.

comments powered by Disqus