375 Comments

• Digg
• Bury

Passwords cannot protect the average computer user from phishing or social engineering. You would be immensely surprised how many people don't check the address bar of their browser or the SSL status. My mother could use a 4096-bit key for her bank account but none of that matters once she types it into a perfect copy of the main boa website hosted on a russian server.

• Reply

• Digg
• Bury

Question: who the hell is dumb enough to tell some stranger exactly what method they use for their passwords?

• Reply

• Digg
• Bury

I have 5 "tiers" of passwords:Tier 1: Password for trivial things that I don't mind giving out to friendsTier 2: Things I would rather not allow full access to but wouldn't ruin me if they did and messed something up.Tier 3: Semi-Secure things that aren't "critical" but should be secure, aka Job Search sitesTier 4: Secure password, used for everyday things I would like to keep secureTier 5: Insanely secure password using symbols and alt-combos like ¤. This is where my email and bank passwords are, most people don't keep their password to their email as secure as their bank. This is a flaw as most sites will allow a reset using your email(I have done this to friends to freak them out :)).

• Reply

• Digg
• Bury

<a class="user" href="http://supergenpass.com/&quot; rel="nofollow">http://supergenpass.com/&lt;/a&gt;

• Reply

• Digg
• Bury

Well those people are just morons :-) at a past job the boss would make his password the 4 keys on the number pad in whatever direction or flavor of the the month so he could just &quot;swipe&quot; his finger down or across those 4 keys to enter the password.Ouch :-)

• Reply

• Digg
• Bury

my password is ******** because it needs to be at least 8 characters

• Reply