Comments on: Password Meter : Check Passwords for Strength http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/ Fri, 03 Feb 2012 19:40:00 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: ibitlab http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-35229 ibitlab Thu, 05 Jun 2008 09:28:25 +0000 http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-35229 Generate and keep strong passwords by http://www.cutepasswordmanager.com. Generate and keep strong passwords by http://www.cutepasswordmanager.com.

]]> By: Aibek http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6175 Aibek Mon, 24 Mar 2008 23:46:30 +0000 http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6175 I am pretty sure that anything that is longer than 15 characters and not an Enlgish word can be considered SAFE. I am pretty sure that anything that is longer than 15 characters and not an Enlgish word can be considered SAFE.

]]> By: Aibek http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6174 Aibek Mon, 24 Mar 2008 23:43:53 +0000 http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6174 Password is not somethig that can substitue Robofrom. It's just another alternative. Roboform is a great solution, but as you may know it's not free. There are also other alternatives like <a href="http://www.makeuseof.com/tag/using-keepass-to-secure-your-online-accounts/" rel="nofollow">Keepass</a>, Clipperz and so on. Check them out in MUO directory <a href="http://www.makeuseof.com/dir/tag/password" rel="nofollow">here</a>. Password is not somethig that can substitue Robofrom. It’s just another alternative. Roboform is a great solution, but as you may know it’s not free. There are also other alternatives like Keepass, Clipperz and so on. Check them out in MUO directory here.

]]> By: bob http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6079 bob Sat, 22 Mar 2008 17:59:55 +0000 http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-6079 I find it disappointing that the max characters for the checker is 16, especially as it advocates strong passwords, yet it limits you to 16 characters. Since i could not fully evaluate my 23 character password & the 16 it limits me to came up strongly (%), I will assume that it is very strong. I think i will firebug the input box and see if i can test my 23 characters. I find it disappointing that the max characters for the checker is 16, especially as it advocates strong passwords, yet it limits you to 16 characters. Since i could not fully evaluate my 23 character password & the 16 it limits me to came up strongly (%), I will assume that it is very strong. I think i will firebug the input box and see if i can test my 23 characters.

]]> By: Isaac http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-5997 Isaac Thu, 20 Mar 2008 16:40:08 +0000 http://www.makeuseof.com/dir/passwordmeter-check-create-passwords/#comment-5997 This tool assumes that your passwords are something you create, coming up with a random-looking sequence that's easy for you to remember and hard for others to guess. I guess most people people do it that way (I used to: my Yahoo password was "9timyp" (random digit, and "this is my Yahoo password") but I think that practice is obsolete. Too many passwords to remember (and you <em>don't</em> want to reuse them!) and some passwords need to change regularly. The only practical approach is to never make up passwords yourself. Instead, use a software tool like Roboform, which stores your passwords in an (optionally encrypted) database and generates new passwords upon request. When you generate a password, you can choose the different character sets used and the length of the password. This determines the bit strength of the password. Many passwords generated this way do poorly with Password Meter. Why? Even though they're totally random, they often violate the rules that Password Meter lays down, such as repeated letters and not having symbols. (Even if you specify symbols, there's a random chance that Roboform won't generate them for a given password.) These rules might apply to human generated passwords (though I'm not sure how using a letter more than once is supposed to make a password more guessable), but are totally inapplicable to software generated passwords. This tool assumes that your passwords are something you create, coming up with a random-looking sequence that’s easy for you to remember and hard for others to guess.

I guess most people people do it that way (I used to: my Yahoo password was “9timyp” (random digit, and “this is my Yahoo password”) but I think that practice is obsolete. Too many passwords to remember (and you don’t want to reuse them!) and some passwords need to change regularly.

The only practical approach is to never make up passwords yourself. Instead, use a software tool like Roboform, which stores your passwords in an (optionally encrypted) database and generates new passwords upon request. When you generate a password, you can choose the different character sets used and the length of the password. This determines the bit strength of the password.

Many passwords generated this way do poorly with Password Meter. Why? Even though they’re totally random, they often violate the rules that Password Meter lays down, such as repeated letters and not having symbols. (Even if you specify symbols, there’s a random chance that Roboform won’t generate them for a given password.) These rules might apply to human generated passwords (though I’m not sure how using a letter more than once is supposed to make a password more guessable), but are totally inapplicable to software generated passwords.

]]>