Posted by: Ken Harthun
Password, Security best practice
It’s always a good thing to repeat good advice and what better time to do so than when people are making resolutions to improve their lives in the coming year?
Nearly three years ago, when I was just starting this blog, I posted Can a Criminal Hacker Guess Your Password?. That post had some good advice on what not to do. Here it is again:
According to Wikepedia there are several things many people use as passwords that results in their being predictable:
Repeated research has demonstrated that around 40% of user-chosen passwords are readily guessable because of the use of these patterns:
- blank (none)
- the word “password”, “passcode”, “admin” and their derivates
- the user’s name or login name
- the name of their significant other or another relative
- their birthplace or date of birth
- a pet’s name
- automobile license plate number
- a simple modification of one of the preceding, such as suffixing a digit or reversing the order of the letters.
- a row of letters from a standard keyboard layout (eg, the qwerty keyboard — qwerty itself, asdf, or qwertyuiop)
So, if you want to protect your router and the other devices on your network, never use anything from the above list and apply Security Maxim #4: Use an unguessable, or difficult-to-guess password always.
Have a safe, happy and secure 2011!