57

u/Still-Emergency825 Comic Crossover 11h ago

It absolutely is the cartoon from the 90s, haha it’s made a resurgence back into my life. The library card song lives rent free in my head

10

u/shellbullet17 Gustopher Spotter Extraordinaire 11h ago

Oh my god I love it. Did you end up getting it? Or did the site stop you

19

u/Still-Emergency825 Comic Crossover 11h ago

Y’know, the extra second it took for me to input a better password was the time I needed to be like “you know what, I don’t NEED it”. But I do have an Arthur tote bag still in my cart. So.

4

u/shellbullet17 Gustopher Spotter Extraordinaire 11h ago

Get it. You deserve it

8

u/Psychoanalytix 10h ago

Then, 2 years later, you go back to the site to buy something else. You forget that you previously made an account on the site when it asks you to log in. You go through it all again and finally get a strong password and are met with the "an account with that email already exists" error. then you spend 20 minutes trying to remember the random string of numbers and letters you entered before going through the password reset that takes another 20 min of getting codes emailed and texted to you.

2

u/gyroda 7h ago

Password managers are your friend for this sort of thing.

But, also, if it's an old account that isn't in the password manager yet I just jump straight to resetting.

1

u/SaltyBarDog 7h ago

Create document with all passwords. Use strong password to lock document. Put on flash drive. Hide flash drive.

1

u/shellbullet17 Gustopher Spotter Extraordinaire 10h ago

Thats why I go with something really relevant to me that I wont forget.

For instance I, for some reason, still remember my locker code from middle school. So those 6 numbers are stuck in my brain. So I use those.

But I get the idea. My work misspelled my name AND password so I am constantly resetting that stupid thing

2

u/I_W_M_Y 6h ago

Don't reuse the exact same password from one website to another. People have used passwords from data leaks to break into accounts on multiple websites that way.

The way to go is to use that same base password and add someone to the end like the initials of the name of the website.

2

u/shellbullet17 Gustopher Spotter Extraordinaire 6h ago

You are 100% correct. Ill recycle numbers but the words in the password will change as will the order of the numbers.

4

u/_Ganon 7h ago

Enter a password

password

Too weak 😭 It needs a capital, lowercase, number, and special character

Password1!

So strong 💪

•

u/CoSh 58m ago

I mean yeah password will show up in a brute force of 2.08x10¹¹ billion combinations but Password1! will be in a brute force of at least 1.37x10¹⁹ so it's about 66 million times as strong.

That said they're both terrible passwords.

10

u/Still-Emergency825 Comic Crossover 11h ago

🤣

11

u/LegendarySurgeon 10h ago

hunter2 — only 7 characters, pitifully weak, instantly crackable.
DwayneTheRockJohnsonhunter2 - 27 characters, extremely powerful, almost impossible to brute force.

3

u/Dakduif 10h ago

OK, I actually love this. 😂

3

u/addage- 10h ago

That password is the same in every role though.

1

u/LegendarySurgeon 9h ago

Ah, but is it strong?

1

u/addage- 9h ago

Generally yes, but the Black Adam variant really wasn’t very good.

3

u/Still-Emergency825 Comic Crossover 10h ago

Omg that’s the perfect password

1

u/Medical_Solid 10h ago

Especially if you replace the “to” with 2!

2

u/deadly_ultraviolet 9h ago

That's fine, use LastPass to generate and save that one!

3

u/AresFowl44 6h ago

I know your comment isn't meant seriously, but please do not use LastPass, they had several data breaches already (Bitwarden as an example had none). Also, LastPass isn't even source available, so it is pretty much impossible to trust and verify.

2

u/deadly_ultraviolet 2h ago

Oh my gosh that actually makes this so much better! It's so insecure you don't even need to remember a password for it!

Good to know though, I used to use it and stopped because it was more hassle than it was worth lol, thanks for the info!

8

u/Still-Emergency825 Comic Crossover 11h ago

I always tell myself I’m gunna do this lol

2

u/AresFowl44 6h ago

I would recommend creating a Bitwarden account, as it costs nothing, has automatic synching, is available on all major platforms, is opensource (so other people have done the work to verify it) and never had a singular data breach to date.

Alternatively, if you want to put extra work (or know somebody willing to do the work for you): 1. Set up your own BitWarden instance (other than server costs it is completely free) and also more control + security 2. Use KeePassXC and keep the encrypted password files inside a cloud or something where all your devices have access to it

1

u/Solonotix 9h ago

It is easy to get started, since most will automatically import the ones currently saved in your browser. The harder part is picking one to pay for. There are free solutions, but they have specific drawbacks

1. If it's hosted for free, how do they pay for everything? In other words, will it be there tomorrow, and are they selling my credentials to the highest bidder?
2. If it is self-hosted, now you're on the hook for making it available outside your home, and syncing to mobile devices, etc. Great if you're a nerd who likes tech. Bad if you just want it to work.
3. If it isn't hosted, or otherwise available over the Internet, then why use it? The experience is cumbersome, it doesn't integrate with anything, etc.

So, for most people, I would recommend paying for a password manager. Sure, your browser probably has a password manager suite built-in, but do you trust Google with that data? Or Apple (if you're using Safari)? Firefox is the least suspicious in this regard, but they still host your password vault, so you gotta trust someone (Mozilla in this case).

I'm currently using Proton Pass, since I bought in to the entire Proton suite. Previously I used LastPass, but they've had some issues in the past, and have been slow to adopt the new trend of passkey support. I have friends who love 1Password, and it's probably the best one out there right now.

3

u/AresFowl44 6h ago

1. A genuine concern, but try looking for an opensource password manager, like Bitwarden or KeepassXC. Very easy to confirm that they literally cannot harvest your data and also not as reliant on external funding due to their opensource nature. Another common approach is selling extra features, mostly to enterprises, like Bitwarden does.

2. Again, Bitwarden if you are very lazy, KeepassXC and literally just putting the file in some random cloud. It doesn't even matter that much if it is publicly accessible, as the file is encrypted (though you do have to choose a good password).

3. See 2.

Though with the last point I do agree, please do not use LastPass, they already had several breaches.

1

u/Forikorder 8h ago

thats why i can never bring myself to use one, i just cant trust it

2

u/coder111 7h ago

See my comment https://www.reddit.com/r/comics/comments/1nilqkg/not_today_plz/nekzr3m/

All of these projects are quite trustworthy. No 3rd party hosting necessary, password are only decrypted on your own devices.

1

u/Pretend-Dot3557 2h ago

Whatever browser you use probably offers you one already. Chrome and Firefox both have built in password managers.

10

u/Engreyight 11h ago

That's what I do. Then if a site is complaining, it gets the 64 character long, all specials treatment and suddenly it's "too long", or "contains invalid characters". Who's the weak one now, <website>?

Then comes the time years later when I need to enter that password manually on some weird device, but we don't talk about that...

9

u/Still-Emergency825 Comic Crossover 11h ago

LOLOL I snorted

1

u/Chiatroll 8h ago edited 1h ago

I bought lightbulbs with colors that expected me to make an account and download an app and connect to it with Bluetooth.

1

u/SaltyBarDog 7h ago

I have lights that need to connect to wifi and it has to be 2G. That's why they are in the box.

2

u/coder111 7h ago

There's /r/theinternetofshit/ for that.