10 myths about Windows passwords

Mon Feb 25, 2008 2:23PM EST

See Comments (124)

When I first clicked on this article, I expected to see yet another diatribe telling you to use numbers, mixed-case letters, and special characters when you created a password. Boy was I wrong.

Get past some of the geeky language and you'll find a truly eye-opening story about the security of passwords in Windows.

Some key points from the piece (at least, points that challenge the conventional wisdom of password security):


  • Random passwords aren't necessarily more secure. Strings of garbage like Gh&739(*j are hard to remember, easy to mistype, and can be vulnerable to password crackers, especially if they are short.

  • The most secure passwords are 15 characters or longer.

  • Replacing an "o" with a "0" does nothing for security. Do you really think a hacker can't figure out to try d0g instead of dog? Adding a few digits to a cracking program is no big deal.

  • Realistically, changing your password every four months is good enough.

  • Documenting your password is not necessarily a bad thing. If a password is written down and stored securely (say, in a safe), this can be useful if an employee quits, for example. Many people store their passwords in a safe deposit box in the event of emergencies, so spouses or children can get access to bank accounts and the like.

Surprisingly, Mark Burnett's piece dates back to 2002, but the lessons are still relevant today. Give it a spin. Maybe consider changing your passwords this weekend.

Comments on 10 myths about Windows passwords

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 6 Posted by darkhunterforthemoon on Thu Sep 3, 2009 3:36PM EDT Report Abuse

    As a microsoft employee i would recommend that when you think of a password , try to let it be one that you remember but dont let it have any association with anything to do with your personal or private life as most hackers and friends will try everything they know about you and to do with you . The longer and more varied passwords with both letters , numbers and symbols works best .

  • 7 Posted by eufemiaamul on Thu Sep 3, 2009 3:56PM EDT Report Abuse

    thanks for reminding me of changing my password.

  • 10 Posted by telmore26 on Thu Sep 3, 2009 9:59PM EDT Report Abuse

    I found this to be eye opening and informative. Thanks for the help.

  • 11 Posted by barb_k_m on Thu Sep 3, 2009 3:02PM EDT Report Abuse

    LOL windows passwords on a home computer are unsecure no matter how you setup you computer.. My stepson found that out when his girlfriend changed his password on their computer as a joke.. I used my bag of tricks and had his changed to a new one and in zip pop nothing... NO hacking requred there are tools on the market for just these things... and for those folks that think usinga passwords on any thing else there are tools to find them too... Passwords are like locks they are only for honest people, ROLMFAO at this article...

  • 12 Posted by greatphotos1 on Thu Sep 3, 2009 4:12PM EDT Report Abuse

    I,m not an expert but i can count to ten.(10 Myths About Windows Passwords )

  • 13 Posted by joey_ploof on Thu Sep 3, 2009 4:38PM EDT Report Abuse

    Am I wrong or are there only 5 "Myths" listed.....???

  • 14 Posted by ricco_suave_22 on Thu Sep 3, 2009 8:38PM EDT Report Abuse

    Well, I make it my policie to never do anything on my computer that a hacker could get anything out of. I never use my credit cards online so nothing to worry bout there, plus I really hate electronic transactions... I like to have a paper log of my bill payment and what not so... I think it works best too.. I, as a compugamerholic, spend to much time in front of this bad box anyway, so it is best for me to have to go to the mall to buy shoes and such rather than be the lazy person I long to be. Computers have definately caused their fair share of fatty's and shut-ins. Remember peoples... you own your computer, not the other way around.... Turn it off!

  • 15 Posted by ricco_suave_22 on Thu Sep 3, 2009 8:38PM EDT Report Abuse

    Yeah... I like what barb_k_m said. It reminds of something some famous Greek philosopher said.... Good people don't need laws to tell them how to act; while bad people will find a way around those laws.... Plato - I think!

  • 16 Posted by j_burkeen on Thu Sep 3, 2009 4:45PM EDT Report Abuse

    this is very interesting.I would like to learn more about passwords,this has been very helpful to me. j_burkeen@yahoo.com

  • 17 Posted by serfdew on Thu Sep 3, 2009 9:13PM EDT Report Abuse

    bland article like grits with nothing on them. I thought it said 10 myths - didn't count anything near that, unless you're counting different items in each bullet statement

  • 18 Posted by tamjammer70 on Thu Sep 3, 2009 9:55PM EDT Report Abuse

    These messages are soo important to our "security" that is left of our so-called "security" left in the United States! Read these articles, take the time, think about tomorrow, it COULD be YOUR expensive computer that gets a horrid virus or hacked into, we are all soo busy and sitting in our "warm & fuzzy" zones that we tend to put aside the fact that our nation IS CONSTANTLY under attack by people that want what we have. BE SMART! Work smarter, NOT harder!

  • 19 Posted by tnnomad on Thu Sep 3, 2009 10:14PM EDT Report Abuse

    Come on, this story is useless dribble .... How secure are the passwords in Windows is a better topic ... How easy is to pull it out of the program ... Is it secure????

  • 20 Posted by grizlbr on Thu Sep 3, 2009 4:13PM EDT Report Abuse

    As a student worker at CTC I managed to find all flawes by accident. If someone wants on my computer so much, they will get there. Just as they opened the barn door when they said we installed it YOU

  • 21 Posted by grizlbr on Thu Sep 3, 2009 4:13PM EDT Report Abuse

    As a student worker at CTC I managed to find all flawes by accident. If someone wants on my computer so much, they will get there. Just as they opened the barn door when they said we installed it YOU

  • 22 Posted by grizlbr on Thu Sep 3, 2009 4:13PM EDT Report Abuse

    As a student worker at CTC I managed to find all flawes by accident. If someone wants on my computer so much, they will get there. Just as they opened the barn door when they said we installed it YOU

  • 23 Posted by ichigo_san89 on Thu Sep 3, 2009 4:22PM EDT Report Abuse

    101001010110100010101111001010101001101010111010010100101010100111010101110101000101010100101010001010010111000110010101011010101000110 encrypted

  • 24 Posted by wormdaddy42 on Thu Sep 3, 2009 10:49PM EDT Report Abuse

    Good points, most are just common sense though. As for government, you must know that no password is safe from government snoops, because whatever OS, or technology you are using right now, is 10 to 15 years behind them, and that is on the low side. Our tax dollar, is thier play money, and we work for them.

  • 25 Posted by habibiguy on Thu Sep 3, 2009 4:15PM EDT Report Abuse

    HOORAY...... LOTS OF INFO I ALREADY KNEW!!!. HOWEVER, WHAT JUST KILLS ME..... CHANGE IT EVERY FOUR MONTHS???. WHAT GOOD IS THAT????. IF A HACKER REALLY WANTS YOUR PASSWORD, IT WONT TAKE HIM FOUR MONTHS TO CRACK IT. AND IF IT DOES.... THEN HE PROBABLY ISNT GOING TO CRACK IT ANYWAY.. ANYWAY, PASSWORDS ARNT SECURE ANYWAY NO MATTER WHAT. HERES WHY... THERE ARE PROGRAMS ALL OVER THE PLACE THAT YOU CAN BOOT RIGHT FROM THE CD ROM AND CLEAR OR RESET EVERY PASSWORD ON WINDOWS TO NOTHING. THAT DOESNT EVEN REQUIRE A CRACK. ITS JUST FINDS THE FOLDERS THERE STORED IN AND ITS DONE. FOR SECURITY SAKES, SINCE I AM AN HONEST PERSON, IM NOT GOING TO SAY WHERE THE PASSWORDS ARE STORED IN WINDOWS. MY RECOMMENDATION IS, DONT EVER PUT YOUR PERSONAL INFO ON A PUBLICLY USE PC OR AT ANY WORK SETTING. KEEP IT ON A PC THAT ONLY YOU AND YOUR TRUSTED FAMILY ACCESSES. BOTTOM LINE!!!

Post a Comment

Sign In to Post a Comment

My Tech

Please enable your browser's cookies to activate the My Tech column.

Also on Yahoo! Tech

Computers Home Office Wi-Fi & Networking Phones & PDAs Cameras & Camcorders TV & Home Theater Portable Audio
 

Site Map | Tour | Subscribe to Yahoo! Tech

Question and Answer content at Yahoo! Tech is written by Yahoo! users at Yahoo! Answers. Yahoo! does not evaluate or guarantee the accuracy of any Yahoo! Answers content. For more information, read the Full Disclaimer.

Opinions expressed by the Advisors are their own and do not necessarily reflect the views of Yahoo! Inc. Yahoo! receives no compensation from any manufacturer or distributor nor does it compensate any Advisor for the coverage of any product or service in any Advisor's content.