Why is it so lazy to invent complex different passwords for different sites, and remember them, although this is important and we, in theory, should worry about it?

Why is it so lazy to invent complex different passwords for different sites, and remember them, although this is important and we, in theory, should worry about it?

VXLAN BGP EVPN- L2VNI (Episode 1)

Previous questionWhat result do casinos expect when placing their ads in TV shows and movies?
Next questionAre you ashamed to be a computer pirate? ?

answers (4)

Answer 1
September, 2021

Because this is how the brain works. You invented 10 different passwords, wrote it down, didn’t write down the 11th, used the service often, then scored it, then you go in - the password is not correct, you sort out possible passwords - the profile is locked.
What we have: the price of an error in using a non-standard password is much higher than the price of a cracked password.
Suppose I am not a conscientious administrator of a game site and I store your passwords in the database without salt, the user seemed to me a little fucking awkward and I decided to teach him a lesson I go to the mail and enter the password from the game account - it came up, I can harm him, but if it didn’t fit and I go to the competitors' website where his login password bundle will work - I can only sleep a little - come to us, the information will be deleted during the day , the profile will be blocked, and after a letter to the admins the user will be restored.
And so - using one password for everything - you risk losing your reputation, using different passwords for everything - losing all accounts, using different passwords to mail and banking services and one password for all other services, you risk absolutely nothing.

Answer 2
September, 2021

This is a myth. In fact, only a very small number of key sites need complex, different passwords. These are the sites, the loss of access to which or access to them by third parties threatens with serious consequences. Each person has very few such sites. To count all of them, the fingers of one hand are enough with a margin. Well, the post office ... well, the online banking ... well, a couple of other sites. And that's all.

On all other sites, the password can be simple and the same. In reality, you need two passwords, because some sites sometimes require you to change your password, and it cannot match the old one. In such cases, a second password is needed. Well, or again the first one, if this happens for the second time.

The fact is that on most sites the account has no real value. Losing access will cause a feeling of annoyance that will last no longer than a couple of minutes. During this time, you can create a new account that will be just as good. On some sites, I'm even too lazy to change the password to my own simple and identical one. I leave the one generated by the site. And the next time I log in, I simply generate a new one through the "forgot password" link.

Answer 3
September, 2021

Passwords are too lazy to invent for a very simple reason: you don't have such a habit. It's too lazy to comb your hair in the morning, too lazy to say thank you and please, too lazy to double-check the data when buying train tickets, too lazy to watch the production dates and expiration dates of products, too lazy to watch what kind of light is at the traffic light, too lazy to apologize when wrong, too lazy to carefully read the task before doing it, too lazy to think what the customer really wants, laziness to close windows in a downpour and storm - anything you like laziness if you have not had time to get used to these actions.

Lack of motivation is supported by the lack of fear: you still have there were no major reputational and financial troubles due to the careless attitude to passwords. I know people who were fired because of this, for example. Here's the same as with backups: until you lose important photographs and documents several times, you will not start making backups at least occasionally.

An even more important reason is an unclear process for you. If you had a debugged process, you would not have thought at all whether it was necessary or not, but simply would have done it. For example, each password can be generated by the program and written to the browser and to a special secure software notebook, then if you forget it, you can recover it. Leave important passwords to those you trust, then if there is a chance that you will not forget them at the same time. One way or another, if you have a purely mechanical process of finding forgotten passwords and writing down the ones you have just invented, and if you can easily come up with passwords or generate them with a program, then all this does not cause you any difficulties at all. And the most lazy for us to do what it is not clear at all from which side to take, and what to do is too difficult.

... In any case, you do not register somewhere so often that it turns into a problem.

And that's why I think Nikolai Kovalevsky's answer is wrong.

From the question:

(after all, this is also important and we, in theory, should worry about it)

Answer :

Nikolay Kovalevsky:
Because unconsciously you already know and you understand that complex and long passwords are not important nowadays, when captchas have already been invented and brute-force attacks on your mail / website / social network page are impossible.

Have you stopped drinking cognac in the morning? Answer yes or no? == In the space of this phrase, the opponent drinks cognac in the morning, but perhaps only until recently.

you already know and understand that complex and long passwords are not important in our time == in the space of this answer it is accepted that complex passwords are not important in our time. The author of the question may, yes, know and understand this, or not, not know and not understand. At the same time, the answer does not contain any special instructions for individual cases of sites where security has not even begun to be at the level of banking systems, and there is no indication of how many of these sites (a lot).

Discussions about the number possible passwords from 5 simoxen are also misleading, because we are talking about the same passwords for different systems and about simple passwords, and in order to find a simple password, the program does not have to go through all the combinations of Sanskrit and Coptic characters.

In addition, about the fact that brute force attacks are impossible, information is knowingly false. It can be adequate only for systems with additional layers of protection in the form of, for example, two-factor authentication, and only if the tool of this protection (for example, a phone) is out of the reach of the cracker, and moreover, even the confirmation code in some systems can be brute-forced. Moreover, I personally know people who use systems with two-factor authentication and do not enable it.
And if a person hasn't bothered with security at all, simple passwords identical for all systems will not help him in any way.

Thus, he imposes on the author of the question the point of view that the password can be chosen at least 00000000, at least 12341234, and its complexity does not always matter at all. I consider such his attempts to be truly harmful in our current realities.
It is extremely thoughtless to reckon that any arbitrary passer-by will be honest enough to let him hold a suitcase with money or to entrust him with a very important secret - it is extremely thoughtless, even if honest people are not constrained in means in the city more than 60%.

Answer 4
September, 2021

Because unconsciously you already know and understand that complex and long passwords are not important in our time, when captchas have already been invented and brute force attacks on your mail / website / social network page are impossible. You didn't think about it on purpose, but the information is far from secret.

Related question

Is it so important for the scientific world to create a "theory of everything", or can we get by with private theories?

Read more

If Facebook is hacked so often, why do people keep using it? They worry about confidentiality and let them steal their data.

Read more

Why the theory of gravity is not taken with hostility from the fact that it is a theory. And evolution is different, although both have been scientifically backed up for a long time.

Read more

Ansible 101 for Network Engineers (part 1)

Why in the twenty-first century, even in theory, has not an alternative to a wheelchair been invented that would easily climb stairs and so on?

Read more

Why in correspondence we attach so much importance to the emoticon ")" and believe that if a person writes without it, then he speaks rudely and without interest?

Read more

Who and in what country has planned plastic windows? Why did the vents disappear in them, and the window opens vertically in ventilation mode? Whose invention is this?

Read more

Why is it so important for people to kill other people?

Read more

Why do people live as long as we do in most science fiction stories about the distant future, although, logically, they should already live for 200-300 years, while remaining young?

Read more

TryHackMe Learn Linux Official Walkthrough

Why are we being told from all sides that we need to learn programming? They publish collections of books and sites where to learn this, different courses advertise themselves ...

Read more

Is it possible to prove the theory of parallel universes in practice, and if so, in what way?

Read more

Why so few people know about the Higgs boson and why is it not talked about in schools?

Read more

Suppose the microphone on my phone is constantly working and analyzing the information that I say and sends it in different directions. Why is this bad for me?

Read more

Why is it that what we dreamed sometimes happens in reality, how to explain this process?

Read more

\

Is it possible to find porn sites on the darknet? How to do this and should a law-abiding Internet user do this at all?

Read more

How do addictions appear, and why is it so difficult to get rid of them?

Read more

Are there any hackers in the real world like in Mr. Robot. And if so, why is nothing heard about them?

Read more

Is it possible to eat pasta alone for a whole month. And cook them differently each time?

Read more

Why is it so important to open the windows and bring the seat upright when landing on an airplane?

Read more

The Secret step-by-step Guide to learn Hacking

Why do videos shot on Gopro Hero 4 (1080p) look so different on Youtube - clear, acceptable and soapy? Is it about processing or stabilization?

Read more

On which site is it better to make blanks for your book and how to save them? I am writing on a draft for now, then I want to create it on an electronic site.

Read more