Make Simple User Passwords
-
If users want long, gibberish passwords, I’ll recommend a password manager. Otherwise I usually take the approach of having them make a password from the first letters of the words in a memorable sentence.
-
@EddieJennings said in Make Simple User Passwords:
If users want long, gibberish passwords, I’ll recommend a password manager. Otherwise I usually take the approach of having them make a password from the first letters of the words in a memorable sentence.
Only works when THEY are making passwords, that's a very different use case.
-
@scottalanmiller said in Make Simple User Passwords:
What's a compromise?
Yup, here is reality. Sometimes children's tools just make more sense when, well, you can draw your own conclusions.
We use this all the time when setting up new users or when asked to reset forgotten ones.
-
@scottalanmiller said in Make Simple User Passwords:
Ever need to make passwords for users and, let's face it, in the real world a lot of customers demand some pretty silly simply passwords. Using password generators often results in passwords that customers will not (and maybe cannot) use. A ridiculous situation, obviously, but it is reality. Passwords are simply difficult to often pass on to someone.
When generating temporary passwords, having something super strong is rarely very important. But avoiding something too hard to be used is needed. But just making up something non-random or even non-unique is really bad.
What's a compromise?
Yup, here is reality. Sometimes children's tools just make more sense when, well, you can draw your own conclusions.
That's... brilliant! Lol
-
Cool as you said perfect for first time account password
-
@hobbit666 exactly for new users.
-
@scottalanmiller said in Make Simple User Passwords:
Ever need to make passwords for users and, let's face it, in the real world a lot of customers demand some pretty silly simply passwords. Using password generators often results in passwords that customers will not (and maybe cannot) use. A ridiculous situation, obviously, but it is reality. Passwords are simply difficult to often pass on to someone.
When generating temporary passwords, having something super strong is rarely very important. But avoiding something too hard to be used is needed. But just making up something non-random or even non-unique is really bad.
What's a compromise?
Yup, here is reality. Sometimes children's tools just make more sense when, well, you can draw your own conclusions.
I use CHBS
http://correcthorsebatterystaple.net/ -
Using NATO phonetic alphabet with a symbol and or number is what I usually recommend. So for example 'John Doe' could be 'JuliettDelta!'
-
@gtech said in Make Simple User Passwords:
Using NATO phonetic alphabet with a symbol and or number is what I usually recommend. So for example 'John Doe' could be 'JuliettDelta!'
Try to get an end user to spell Juliett.
Especially when Juliet is more common.
And Juliette is an option.
-
True, However they should still remember the password after a few tries they should get it. Users comes in all shapes so this as simple as it is will not work for all users.
-
@gtech said in Make Simple User Passwords:
True, However they should still remember the password after a few tries they should get it. Users comes in all shapes so this as simple as it is will not work for all users.
CHBS beats that hands down.
-
Thank you So much very useful!
-
@JaredBusch said in Make Simple User Passwords:
@scottalanmiller said in Make Simple User Passwords:
Ever need to make passwords for users and, let's face it, in the real world a lot of customers demand some pretty silly simply passwords. Using password generators often results in passwords that customers will not (and maybe cannot) use. A ridiculous situation, obviously, but it is reality. Passwords are simply difficult to often pass on to someone.
When generating temporary passwords, having something super strong is rarely very important. But avoiding something too hard to be used is needed. But just making up something non-random or even non-unique is really bad.
What's a compromise?
Yup, here is reality. Sometimes children's tools just make more sense when, well, you can draw your own conclusions.
I use CHBS
http://correcthorsebatterystaple.net/Thanks for this link Jared. This is excellent!
-
We use:
http://pwgen-win.sourceforge.net/and set it to use four words with an upper and a special. People love it. We started using it long before the online tools came around and we still use it. I grab new word lists every so often because I can and it makes me feel good.
-
I like this too, especially since I've had that graphic (the one they reference on their site) on the wall in our Lab for many years!
@JaredBusch said in Make Simple User Passwords:
@scottalanmiller said in Make Simple User Passwords:
Ever need to make passwords for users and, let's face it, in the real world a lot of customers demand some pretty silly simply passwords. Using password generators often results in passwords that customers will not (and maybe cannot) use. A ridiculous situation, obviously, but it is reality. Passwords are simply difficult to often pass on to someone.
When generating temporary passwords, having something super strong is rarely very important. But avoiding something too hard to be used is needed. But just making up something non-random or even non-unique is really bad.
What's a compromise?
Yup, here is reality. Sometimes children's tools just make more sense when, well, you can draw your own conclusions.
I use CHBS
http://correcthorsebatterystaple.net/