<p dir="ltr">This is the beauty of the xkcd password for Android users. You install the REAL Swype keyboard and then create passwords out of combinations of words that Swype reliably. I have 30+ char passwords that I can enter in 3 seconds flat. </p>
<p dir="ltr">Need help remembering these passwords? Choose combinations of words that express how you feel about the app, or the competition, or how you felt before you had the app. I suggest not choosing words that describe what the app does.<br>
</p>
<p dir="ltr">Sent from my Samsung Galaxy S3 using the Swype software keyboard.<br>
--Richard Bronosky</p>
<div class="gmail_quote">On Mar 4, 2013 9:19 PM, "Ron Frazier (ALE)" <<a href="mailto:atllinuxenthinfo@techstarship.com">atllinuxenthinfo@techstarship.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
<br>
Jay Lozier <<a href="mailto:jslozier@gmail.com">jslozier@gmail.com</a>> wrote:<br>
<br>
>On 03/04/2013 12:38 PM, Ron Frazier (ALE) wrote:<br>
>><br>
>> "Michael H. Warfield" <mhw@WittsEnd.com> wrote:<br>
>><br>
>>> On Mon, 2013-03-04 at 09:35 -0500, Ron Frazier (ALE) wrote:<br>
>>>> Hi all,<br>
>>>> I first saw the link to this article on the dc404 mailing list. If<br>
>>> you're an evernote user, you need to know about this.<br>
>>><br>
>>>> <a href="http://www.theverge.com/2013/3/2/4056704/evernote-password-reset" target="_blank">http://www.theverge.com/2013/3/2/4056704/evernote-password-reset</a><br>
>>> If you are an Evernote user, you need to change your password. The<br>
>>> attackers had access to user-id's and password hashes. The<br>
>passwords<br>
>>> where hashed and salted but simple passwords are still subject to<br>
>>> off-line brute force and rainbow table attacks. Change your<br>
>password<br>
>>> to<br>
>>> a good, high complexity, password or passphrase.<br>
>>><br>
>> Do you think a 15 character random alphanumeric generated by Lastpass<br>
>is good enough? Or, should you go longer if the site will let you?<br>
>I tend to use very long gibberish passwords (Keypassx) that include any<br>
><br>
>keyboard character including punctuation. I consider 15 characters<br>
>unacceptably short.<br>
><br>
>The reason for both is the potential complexity of the password is<br>
>increased forcing hackers to use purely brute force methods which can<br>
>become time consuming with very long passwords. My goal is to be hard<br>
>enough that the hackers will eventually give up.<br>
><br>
>Also, every site has its own password so even if they crack one<br>
>password<br>
>it not used any where else.<br>
><xnip><br>
><br>
>--<br>
>Jay Lozier<br>
><a href="mailto:jslozier@gmail.com">jslozier@gmail.com</a><br>
><br>
<br>
My wife, who's not a super geek, rightly pointed out that the weak link in my chain is now the master password to the lastpass database. If that were cracked at the lastpass website, or on a stolen PC, I'd be in trouble. I do have to remember that one, and I do have to type it, every time I want to access the passwords for ANY site. I'll have to give that some more thought.<br>
<br>
Sincerely,<br>
<br>
Ron<br>
<br>
<br>
<br>
--<br>
<br>
Sent from my Android Acer A500 tablet with bluetooth keyboard and K-9 Mail.<br>
Please excuse my potential brevity if I'm typing on the touch screen.<br>
<br>
(PS - If you email me and don't get a quick response, you might want to<br>
call on the phone. I get about 300 emails per day from alternate energy<br>
mailing lists and such. I don't always see new email messages very quickly.)<br>
<br>
Ron Frazier<br>
<a href="tel:770-205-9422" value="+17702059422">770-205-9422</a> (O) Leave a message.<br>
linuxdude AT <a href="http://techstarship.com" target="_blank">techstarship.com</a><br>
<br>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/listinfo</a><br>
</blockquote></div>