Deprecated: Function create_function() is deprecated in /home2/blogwebhostingbu/public_html/wp-content/plugins/facebook-like-box-responsive/facebook-like-box.php on line 29
"Password" is not a good password - WebHostingBuzz US Blog
Notice: Undefined variable: defaults in /home2/blogwebhostingbu/public_html/wp-content/plugins/fatpanda-facebook-comments/plugin.php on line 366
 

“Password” is not a good password

Posted on 05 Mar 2011 by Alan Burns

Many studies have found that one of the most common passwords is “password”. This is likely because it is the default in many systems. A very bad default, in my opinion.

We’re overwhelmed by passwords, so it’s not surprising that many people choose highly insecure, but easy to type and remember, passwords. They’re creating a large risk for themselves by doing that.

When creating a password, do a threat assessment, judging the risk to you if someone guesses or hacks the password. An on-line forum is not a great risk, as likely all that could happen is that someone could make postings or send internal messages in your name. Your web hosting account or on-line bank are much more serious, and require very strong passwords.

Create a password that mixes upper and lower-case letters, numbers and, if the system allows it (many don’t) symbols such as hyphen, #, @, or %. If you find strong passwords difficult to remember, create a mnemonic or a phrase in which you enter the first character of each letter, substituting 1 for i, 3 for e, etc. Not all systems allow you to include special characters, which in my view is a foolish limitation.

Do not use only words found in the dictionary, as password cracking software quickly tries all of those. Do not use your birthday, or spouse’s name, or your city, or any other personal data that could be easily guessed by someone who knows a few of your details.

Do not write your password on something you leave accessible. Don’t, as too many people do, keep a written copy of your ATM banking password in your wallet. I recall a boss whose office computer and network password was “tigger”. This was poor in three ways:

  1. It is too short.
  2. It’s the name of a popular Winnie the Pooh character.
  3. He wrote it on a yellow post-it note stuck to his office workstation for all to see.

Also, according to one study, Top 500 Worst Passwords of All Time, it’s the 34th most common password. Another common password is “ncc1701”, the registration number of the USS Enterprise from the original Star Trek. One of my clients uses this as his cPanel web hosting password (no, I do not host his sites).

That 500 Worst Passwords list makes for interesting reading. I found many themes. Cars are a common choice: mustang, porsche, firebird, camaro, corvette, toyota, ferrari, bronco, jaguar, viper, saturn, mercedes, sierra, blazer, ford, falcon, scorpion, dakota, ranger.

Sports teams are another favourite: flyers, giants, eagles, yankees, rangers, packers, redsox, gators, cowboys, braves, dolphins, redwings, broncos, redskins, raiders, angels, arsenal, united, chelsea. Sports also make the most common list: baseball, football, fishing, golfer, tennis, nascar, swimming, soccer, hockey.

Within the top 500 are many place names: austin, japan, canada, boston, newyork, brazil, phoenix, dallas, brandon, chicago, victoria, london, paris, sydney, russia, florida.

Many common first names are used: jennifer, michael, eric, jack, michelle, daniel, william, george, thomas, robert, kevin.

There are colours: black, orange, purple, white, yellow, blue.

Surprisingly, there is a large number of sex related words. You can check for yourself, I won’t repeat them here.

Even when people try to be clever by using numbers instead of common words, they use obvious string that are used by thousands of other people: 123456, 1234, 1111, 12345, 12345678, 2222, 7777, 5555, 6666, 666666, 1212, 0, abc123.

If you have trouble coming up with good passwords, you can use a random password generator such as this one. If you’re working on your cPanel web hosting account, you’ll find a password generator built into cPanel, to use when creating mail accounts and FTP accounts, and for reseller and VPS accounts there is one in WHM when creating new cPanel accounts.

Choose a method that works for you, but be sure to protect yourself with strong, uncommon passwords.

WebHostingBuzz Logo

© WebHostingBuzz USA LLC 2002 - 2024
WebHostingBuzz is a Registered Trademark.
All Rights Reserved.
WebHostingBuzz USA LLC, 850 Southbridge Street, Auburn, MA 01501, USA

1 (800) 252-1887

Payment Logos
  • Webmoney Verified
  • Webmoney Accepted

Sign up for our Newsletter

Scroll to Top