I was just complaining to my wife on Saturday about how all these passwords are everywhere you go now. It’s not a horrible thing. We all want to know someone’s not impersonating us or stealing our most ultimate secrets of secrets – or worse, taking all our credit information.
Before you start thinking, “Geez, dude, get with it, it’s the internets (sic,) stupid,” I get it. Really. I’ve been dealing with having a password and PIN on some sort of computerized system since I got my first ATM card back in 1977. So passwords are not a new concept. In fact, the same general rules apply today as they did back then. Rules, by the way, that the vast majority of the population completely ignore anyway.
You should never use your birthday, social security number, family member’s name, pet’s name, 1234, 1111, or significant dates like anniversaries, birthdays of relatives, etc. It all sounds pretty standard. In addition to these rules, another that’s been around since before Ferris Buehler’s Day Off is: Don’t write your password down, commit it to memory!
Since then there are rules that have been added to the list. Use a mix of alpha and numeric characters. Don’t use hyphens, asterisks, multiples of the same key (like HHH, for example) and now you should use some upper and lower case letters. Oh, and your password should be anywhere from eight to fifteen characters long.
So I have to have one of these super duper uncrackable passwords for:
My online checking account.
Each of my online bill pay accounts
Each of the forums I post on (that’s like seven or so.)
All four of my photo storage accounts on different websites.
My Forecasting World Events account.
My gamer sites, in all totaling around 12.
My Weather Underground account.
My local news station account.
The NYTimes online account I’ve had for 12 years.
Open Salon
And others.
All told, I have to have a password for my online lifestyle to the tune of about 45 different passworded sites.
Remember, I am supposed to commit these to memory, not write them down and use a different one for each. Holy shit, how does anyone, and I mean ANYONE, successfully follow these rules? Look, I’m 51 and considered an old timer online, having had some sort of online account since 1987 when BBS ruled the WWW. Today’s internet age scions, raised from infancy with AOL, the internet and MySpace and now Twitter, FaceBook, YouTube (shit, right, I also have a Google account and YouTube, so 47 at least!) and god knows how many bitorrent sites, social sites, and others (crap, I also have LinkedIn, Plaxo and HP, Tiger Direct, Egghead and MoveOn.org – gaaaah!) how does anyone honestly follow these rules and have an online life they can access?
Oh, but don’t you know, savvy old owl, Internet Exploder can remember your passwords for you. Yeah, except the next time you turn off your computer and restart. Then it wants you to fill in the passwords all over again. Oh, and don’t forget a few other new rules: Don’t use password recalling programs, because there are security holes in the OS which can allow a hacker to access them and then break into all your accounts.
What’s an internet junkie to do? Simple. You don’t – can’t – follow all the rules. Even so, a few sites make you put in a minimum number of characters. Some of them demand that you use at least one number and one Capital in your password. Some of them throw out words that, oddly enough, look like words. So of course, they expect your password to be this random gibberese with assorted capital letters, numbers and nothing that comes close to sounding like a word.
Remember, you’re supposed to commit these to memory, don’t write them down. And you can use your password recall program, but the makers of the same goddamn password recall program don’t recommend you use them now.
I’ll be honest, there’s no way in Hell you’re going to figure out my password. In all point of fact, I can remember most of my over 50 passwords, because a lot of them are almost exactly the same and some of them are exactly the same. I know, it’s not recommended, but goddamn it, as smart and gifted as I am, I just don’t have time or the temperament to dick around trying to remember all these frickin’ passwords. Screw the conventional wisdom and fear of being hacked. The person who hacked my account would probably feel so bad for me that they’d leave me money.
Every now and then, one of my websites decides that I’ve had my password for too long and that makes it a security risk. So it politely demands that, for my own protection, come up with a new one, you old fart. There was a time when I could simply replace a 1 with a 2 or a 2 with a 1 and problem solved. Now, they’ve got password programs that require you to make something that doesn’t have more than one or two characters from the old one. Shit!
So, it’s no real surprise that I regularly have to enter my password, trying to remember which variation on a theme I have for one of these umpteen sites, and occasionally (right now, I am averaging twice a month or so) I have to have my password reset. In fact, I just had to re-login to FaceBook and ended up resetting my password, which requires four different pages and an email to complete. Not to mention the hassle of failing to guess my own password correctly about ten times (I’m determined that way.)
I can see me doing an Andy Rooney 60 Minutes rant on passwords. Hell, you might think this qualifies. Of course, I lack Andy’s endearingly sickly sarcastic drawl and questioning demeanor. I’m just de-meaner.
I deal with it, but it does occasionally cause me to just swear up a blue norther of cussing and griping. It’s one of the few times, though, that my wife, instead of shaking her head and telling me to quit complaining, she joins in. It’s like that scene with Chris Rock and Joe Pesci in Lethal Weapon 4 where they start ranting about how they fuck you on your cell phone service. That’s one of the funniest scenes in the whole movie. Right up there with Leo Getz’ rant on going through the drive through in Lethal Weapon 2.
I have come to understand and accept that this is the world, the crazy, sometimes insane world, that we live in today, where the lowest amongst us has to have a password for everything we visit and partake in, that we have to have different ones (but we really don’t) and that we’re not supposed to write them down (but some of us do) and that we do this to protect us from identity theft. I get it. I don’t like it, but I accept that this is what it is.
In this world of password protections and identity theft, where we have to have strong passwords and we have to read those stupid hard-as-hell to read funky word phrases (called Captcha) in order to get into our accounts. I have reconciled myself to this. It’s the way of the world.
I don’t feel safer, though. After all, if this is what it takes to make an account and then to protect it, how come we have all these goddamn spammers and robo accounts and hackers who regularly break into some of the highest security sites in the world? All I can do is hope that I am relatively safe, as I am in the ocean, due to the extremely large surface area and the infinitesimally small speck I represent in all that. Sort of anonymity by dint of insignificance.
Predators stick close to their prey. I have no finances to speak of and thus I’m like a giant sloth in the trees, whereas the gazelles, zebra, antelope and wildebeast roam the plains, in full view of the lion. Me? I’m insignificant and unseen. As much noise as I make, I’m still nothing more than an amoeba, making microscopic ripples as regards the signals that call to predators.
In the meantime, those of you afflicted with the curse of having to reset, remember and recall your plethora of password protections preventing you from making your next online meeting of minds, please join me in a small exercise in stress reduction:
First I want you to put your hands flat to your sides, not touching your keyboards. Now take a nice, long slow breath, taking the air in through your nose. Inhale slowly, one, two, three, four, five, six, seven, and hold, hold, hold and release breathing out through your mouth. Repeat this one more time.
Now breathe in one more time as before and when you feel you can’t take in any more air, do what I do:
AAAAAaaaaaaaaaHHhhhhh!
Primal scream therapy helps reduce the stress of dealing with this sort of frustration. It will also scare the bejeezus out of anyone in earshot, so please don’t do this at the work place or around nervous people.
Maybe I should have made a disclaimer sooner?
TIP:
Enter the amount, and click "Tip" to submit!
Steven J. Gulitti
sagemerlin
Petitioner person
beauty1947
Jeanette DeMain
Poor Woman
Salon.com
Comments
Someone dropped a bomb somewhere, contaminating atmosphere
Then take the first letter of each word and your password is:
sdabsca
Capitalize the first if you must and add a number if required. Works for me.
Oh, and don't keep your list of passwords on your iPhone or google contacts list since its just been revealed that there are enormous security holes in those programs. Gah.
Great post.
I am waay too rusty on my HTML coding to be "assed" with it for now (as our UK kindred say for "to be concerned or bothered") and so I haven't done the coolio stuff I once used to do with linking and embedding stuff. BBCode has made me lazy.
Gracious, scanner, Candace: Yeah, it gets tiresome don't it? Great idea, scanner, using "dog" for everything. I use something from my game design that I know is so obscure (unpublished RPG) and so tiny a part of the gameworld that the mere fact I can even name it like this is a measure of my confidence that no-one could possibly guess it. (Of course, it's not like I just blurted it out, either, right?)
Abrawang, that's a great idea, but just too much work. I know so many songs (one of the reasons I love my ROKU so much, I use it to stream Pandora Internet Radio to my TV and rock out, blues out, heavy metal out, folk song out, new age out and all without commercial interruption, everything I love in music from the late 40's to the latest stuff I like today.)
I have too many choices. I think I'll stick with my plan. If I used yours, I'd forget which song I associated with which site, especially if I don't visit it often. And it's still too many different passwords.
I say, though, if it works for you -- rock on, man. And it is a great idea. Maybe if I read it over a couple times, the idea will grow on me. Worse has happened.
Oh, Candace, I wondered what that strange ululating howling like scream was echoing down my way? Thanks for practicing primal scream therapy. I can tell you're going to go far with it. ;)
Thanks for reading and commenting, Y'all! (California boy with an Arkansas daddy! Been saying Y'all all my life.)
โโโโฎโโโโโโโโโโโโถ♥
โโโฎโฃโโโณโโโณโโโณโโโฎ
โโโฏโโญโฎโฃโโฎโโญโโซโญโฎโ
โโโโซโโโโโโโโฑโโโโ
โโโฑโโฐโโซโญโฎโโฐโโซโฐโโ
โโโฑโฐโโโปโโโปโโโปโโโ
♥โโโโโโโ♥โโโโโโโโโ♥
Better than a thousand๏ปฟ hollow words,
is one word that brings peace.
I write mine down...they are on a piece of paper Scotch taped to my desk top. I can make them as complex and random as I want...because they are right here for me. What is the big deal?
Is someone going to break into my house to steal my passwords?
Frank, I think that whole don't write it down is overblown and is really the sort of thing you want to avoid when you're at work or bring home a work computer. Still, it's a fair point.
I mention the last question about bots, robo-accounts AND hackers for the very reason I rant. In almost all cases of account hacking at large, supposedly secure institutions, hackers got in through the accessing of password protected systems. Many of those hackings occurred through holes in the security of the OS, email exploits, remote keylogging, etc, and no amount of password protection can stop that.
I'd lose my passwords if I wrote them down, probably. They get mixed up with my junk mail, or they'd get stacked with my old bill statements in my filing cabinet.
I'm starting to think the best thing is to bookmark the site, then just keep using the "Forgot your password?" button on a daily basis. It takes a few extra pages, but in terms of time and frustration factor, it's quicker and less anxiety inducing. And this way, you have control to change your password regularly. You could just randomly type 10 characters, repeat it and you're in, then do it again differently tomorrow. Talk about password security.
Thanks for reading anf commenting!
RATED!
jlsathre: you don't work for one of those mega corporations that have been hacked recently, do you? I'm just wondering. I'm working on putting two and two together to figure out if the hacking scandals can be reduced to one person writing their passwords down, or using all the same ones for all their accounts.
(totally tongue in cheek, of course, to you both)
Thanks for reading and commenting!
(Tink I still would be honored to be your running mate on the Animal House Ticket)
R♥
I suppose it could be an argument for ubiquitous bio-encryption that unlocks your data and then locks it back up when you get up from the computer automatically?
Think about it. (ANOTHER CRAZY THOUGHT!!) You have to make all computers able to read a fingerprint, voice code and retinal scan, all with off the shelf components available today to put into any computer. Your biometric data could even record an EEG and store it in memory.
You sit down, turn on the computer, just by opeing the screen, say, and your fingerprint is taken off the opening plate, scans it and figures out who you should be, and when the screen's open, the web cam takes a look at your mug (eye's a 2nd time) and the second it verifies you is who you is supposed to be, all your private data, forms, websites etc get a "ping" that verifies your using this computer on that network and these are your official keys to the cyberverse. Bam! Anyone else that can pull off retinal, fingerprint, facial and voice scan deserves to be able to hack in (then again, who'd go through that much trouble unless they already knew it was really worth it.
That means, impersonating someone would be real personal. Sound like a technological answer without too many more hairy thorns than having to remember umpteem and twelve passwords, or have to write them down, have a complex method to remember your stuff -- and if you're going to rely on a password recall program, wouldn't it make more sense to just have a biometric four tumbler key of markers that identify you -- and only you?
Sure, Big Brother'd want to be all over knowing whenever you plug into the system for anything. But I think maybe, as long as we figure out ways to watch right back any time, any where, we'd probably breathe a whole lot easier in so many more ways.
Think of the stress reduction knowing only you have access to your private data? Think of the difficulty that presents current day hackers, who operate like basking sharks, scooping in hundreds of gallons of water at a time in order to eat a million tiny planktons or krill, whereas, in such a secure (overall) society where your own biometrics provide your passkey, just like a key in a lock made custom for you, you could be reasonably certain that, unless you've made a lot of money and/or really irritated someone, your identity will be secure. IN so many ways that could relieve a lot of socially and working derived stress. Don't you think?
Maybe grist for a whole 'nother blog in this vein...?