Comments on: Are you using strong and unique passwords? You should! http://www.spylogic.net/2008/08/are-you-using-strong-and-unique-passwords-you-should/ Sun, 18 Sep 2011 21:48:21 +0000 hourly 1 By: Quzart http://www.spylogic.net/2008/08/are-you-using-strong-and-unique-passwords-you-should/comment-page-1/#comment-81 Quzart Sat, 16 Aug 2008 17:01:49 +0000 #comment-81 Agreed, partially. It's good to have a separate password for each application. Only the part of storing passwords together in one place bothers me. That's why I just keep them all in my head. It isn't as difficult as you might think ... it only takes about 15 minutes (in the end) to remember a password forever, even the ones with more than 15 and _exotic_ characters.<br /> You could also use Japanese/Chinese characters in your passwords (like me), problem is that sometimes the password is first converted to the html/UTF-8 equivalent ( &something; ) and then stored. Luckily the html/UTF-8 equivalent is probably more than 6 characters in length, so you should be ok. Another problem is that you must have a computer that can convert romanji (Japanese written using Latin alphabet) to kana (Japanese characters). Some knowledge of the language is useful too ^^.<br /> <br /> It shows that LinkedIn perhaps isn't hashing the passwords before storing it in their database, which obviously isn't good at all. Agreed, partially. It’s good to have a separate password for each application. Only the part of storing passwords together in one place bothers me. That’s why I just keep them all in my head. It isn’t as difficult as you might think … it only takes about 15 minutes (in the end) to remember a password forever, even the ones with more than 15 and _exotic_ characters.
You could also use Japanese/Chinese characters in your passwords (like me), problem is that sometimes the password is first converted to the html/UTF-8 equivalent ( &something; ) and then stored. Luckily the html/UTF-8 equivalent is probably more than 6 characters in length, so you should be ok. Another problem is that you must have a computer that can convert romanji (Japanese written using Latin alphabet) to kana (Japanese characters). Some knowledge of the language is useful too ^^.

It shows that LinkedIn perhaps isn’t hashing the passwords before storing it in their database, which obviously isn’t good at all.

]]>