Firstoff: Nice blog. I like it.

Now to the topic.

That the weakest chain in a security protected architecture is always the user in front of the keyboard is nothing new for me.

Everyday I’m surrounded by people which don’t use their password as intended and have easy phrases or names that aren’t even case-sensitive.

On my work we use the system that you are forced to change your passwords every 30 days but many people just add a digit at the end of it or count any number in it easily upwards.
That this is not the way the passwords should be used will be ignored and I could run around and scream all day about that.

For my part I have approx. 28 passwords to use and every single password is unique and at least 16 letters strong.
They include case-sensitive letters, special characters and digits.

I change them round about every month.

It’s natural for me to secure every sensible data.
I don’t want to have any person around watching my data that aren’t intended to be seen by them and other parts are sensible and must be secured with passwords.

I think many people see passwords more as a obstacle than as an protection.
Tools like Keepass are useful for persons who can’t remember many passwords but I know a lot of people which dont want to remember a single password because it is ‘hard’ to remember these things just to keep it safe.
I can’t understand this opinion and try to show them that passwords can be easy to remember or to set up.

I hope that in the future more people will use intelligent passwords and stop writing that goddamn (sorry) password down on a piece of paper and put it on the refrigerator or under the keyboard.

Greetings,

Alex