Re: Google can be infuriating.

[David J Brooks]

I have a journal with all of my passwords

Dave

On Fri, Jan 1, 2016 at 2:48 PM, Bruce Walker  wrote:
> On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling  
> wrote:
>>
>> They could have tried to guess my password, it wouldn't be impossible, as I
>> believe a weak password you remember is better than a strong password that
>> you have written down where it can be found.
>
> Bad assumption. The number of folks who have access to the Post-it
> notes you stuck to the bottom of your keyboard at home is very
> limited. But a server-farm of hacked PCs running 24x7 can crack easy
> passwords in seconds, anywhere on the net.
>
>
>> So now I've changed it to
>> something that's not easily guessed.  I just hope I don't forget it.
>
> If you easily forget passwords -- who doesn't? -- get one of those
> apps like 1password that keep them safe for you.
>
>
> --
> -bmw
>
> --
> PDML Pentax-Discuss Mail List
> PDML@pdml.net
> http://pdml.net/mailman/listinfo/pdml_pdml.net
> to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
> the directions.



-- 
Documenting Life in Rural Ontario.
www.caughtinmotion.com
http://brooksinthecountry.blogspot.com/
York Region, Ontario, Canada

-- 
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[Larry Colen]

Bruce Walker wrote:

On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling  wrote:

They could have tried to guess my password, it wouldn't be impossible, as I
believe a weak password you remember is better than a strong password that
you have written down where it can be found.


Bad assumption. The number of folks who have access to the Post-it
notes you stuck to the bottom of your keyboard at home is very
limited. But a server-farm of hacked PCs running 24x7 can crack easy
passwords in seconds, anywhere on the net.


Although access to post it notes on your desk at work is a little harder 
to control.  What I did was come up with one solid password to remember, 
then I have a simple system that changes it for each site, like the 
first and third letters of the url.


For example the root might be t1h$7@e
and if I prepend the first and third letters of a url, I'd get

got1h$7@e  for google
yht1h$7@e  for yahoo
pmt1h$7@e  for pdml
rdt1h$7@e  for red4est

Someone that hacks several of my passwords would be able to figure out 
the rest, but that's not generally the way they do it.  They just steal 
the passwords from one site, then try applying them with the same email 
to every other site.


  >



So now I've changed it to
something that's not easily guessed.  I just hope I don't forget it.


If you easily forget passwords -- who doesn't? -- get one of those
apps like 1password that keep them safe for you.




--
Larry Colen  l...@red4est.com (postbox on min4est)

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[Bruce Walker]

On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling  wrote:
>
> They could have tried to guess my password, it wouldn't be impossible, as I
> believe a weak password you remember is better than a strong password that
> you have written down where it can be found.

Bad assumption. The number of folks who have access to the Post-it
notes you stuck to the bottom of your keyboard at home is very
limited. But a server-farm of hacked PCs running 24x7 can crack easy
passwords in seconds, anywhere on the net.


> So now I've changed it to
> something that's not easily guessed.  I just hope I don't forget it.

If you easily forget passwords -- who doesn't? -- get one of those
apps like 1password that keep them safe for you.


-- 
-bmw

-- 
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[Brian Walters]

On Sat, Jan 2, 2016, at 01:24 AM, Bill wrote:
> On 12/31/2015 11:51 PM, P.J. Alling wrote:
> > Today Google informed me that someone tried to access my Google account
> > using my password, (nice of them to notify me, scary that they deduced
> > the issue from analyzing my activity).  So I changed my password and
> > upped the security on the account.
> >
> > So of course my e-mail client, (Thunderbird), could no longer log in
> > using the POP server.  Google's new security protocol breaks standard
> > email login.  Who the hell do they think they are Microsoft?
> >
> > So I had to lower the security settings, and of course, (once again),
> > it's all or nothing.  I'm wondering how they got my password.  It isn't
> > something that I'd put on the internet.
> >
> 
> They do that to me if I log in with a new device.


Ditto.


Cheers

Brian

++
Brian Walters
Western Sydney Australia
http://lyons-ryan.org/southernlight/

-- 
--

-- 
http://www.fastmail.com - The professional email service


-- 
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[steve harley]

On 2016-01-01 12:48 , Bruce Walker wrote:

If you easily forget passwords -- who doesn't? -- get one of those
apps like 1password that keep them safe for you.


i have been using 1Password for many years now, and it has saved me 
uncountable time and worry


when i have helped few people to get started with 1Password they have been 
really happy with it after getting over the hump; others have strongly 
resisted the effort, yet within a few months they have clearly spent far 
more effort resetting passwords, trying to remember the obfuscated way they 
wrote them in their address books, etc.





--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[steve harley]

On 2016-01-01 16:51 , John Coyle wrote:

I use a password-locked encrypted Lotus 1-2-3 spreadsheet - should be harder to 
crack?


do you mean password-locked, plus separately encrypted? if just 
password-locked, there is commercial software that will crack it



--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[John]

I've tried several times to set up a TrueCrypt thumb drive. There's
supposed to be a way to encrypt the entire drive so that when it mounts
it will automatically prompt for a login ID & password.

So far I haven't even been able to create an encrypted volume on the
drive ... well not one that I can then access by putting in the
password.

The volumes are there, but I can't get to whatever is inside them.


On 1/1/2016 6:51 PM, John Coyle wrote:

I use a password-locked encrypted Lotus 1-2-3 spreadsheet - should be harder to 
crack?

John in Brisbane



-Original Message-
From: PDML [mailto:pdml-boun...@pdml.net] On Behalf Of David J Brooks
Sent: Saturday, 2 January 2016 05:57
To: Pentax-Discuss Mail List <pdml@pdml.net>
Subject: Re: Google can be infuriating.

I have a journal with all of my passwords

Dave

On Fri, Jan 1, 2016 at 2:48 PM, Bruce Walker <bruce.wal...@gmail.com> wrote:

On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling <webstertwenty...@gmail.com> wrote:


They could have tried to guess my password, it wouldn't be
impossible, as I believe a weak password you remember is better than
a strong password that you have written down where it can be found.


Bad assumption. The number of folks who have access to the Post-it
notes you stuck to the bottom of your keyboard at home is very
limited. But a server-farm of hacked PCs running 24x7 can crack easy
passwords in seconds, anywhere on the net.



So now I've changed it to
something that's not easily guessed.  I just hope I don't forget it.


If you easily forget passwords -- who doesn't? -- get one of those
apps like 1password that keep them safe for you.


--
-bmw

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.




--
Documenting Life in Rural Ontario.
www.caughtinmotion.com
http://brooksinthecountry.blogspot.com/
York Region, Ontario, Canada

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.




--
Science - Questions we may never find answers for.
Religion - Answers we must never question.

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

RE: Google can be infuriating.

[John Coyle]

I use a password-locked encrypted Lotus 1-2-3 spreadsheet - should be harder to 
crack?

John in Brisbane



-Original Message-
From: PDML [mailto:pdml-boun...@pdml.net] On Behalf Of David J Brooks
Sent: Saturday, 2 January 2016 05:57
To: Pentax-Discuss Mail List <pdml@pdml.net>
Subject: Re: Google can be infuriating.

I have a journal with all of my passwords

Dave

On Fri, Jan 1, 2016 at 2:48 PM, Bruce Walker <bruce.wal...@gmail.com> wrote:
> On Fri, Jan 1, 2016 at 9:16 AM, P.J. Alling <webstertwenty...@gmail.com> 
> wrote:
>>
>> They could have tried to guess my password, it wouldn't be 
>> impossible, as I believe a weak password you remember is better than 
>> a strong password that you have written down where it can be found.
>
> Bad assumption. The number of folks who have access to the Post-it 
> notes you stuck to the bottom of your keyboard at home is very 
> limited. But a server-farm of hacked PCs running 24x7 can crack easy 
> passwords in seconds, anywhere on the net.
>
>
>> So now I've changed it to
>> something that's not easily guessed.  I just hope I don't forget it.
>
> If you easily forget passwords -- who doesn't? -- get one of those 
> apps like 1password that keep them safe for you.
>
>
> --
> -bmw
>
> --
> PDML Pentax-Discuss Mail List
> PDML@pdml.net
> http://pdml.net/mailman/listinfo/pdml_pdml.net
> to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
> the directions.



--
Documenting Life in Rural Ontario.
www.caughtinmotion.com
http://brooksinthecountry.blogspot.com/
York Region, Ontario, Canada

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.


-- 
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[P.J. Alling]

On 1/1/2016 2:03 AM, John wrote:


On 1/1/2016 12:51 AM, P.J. Alling wrote:

Today Google informed me that someone tried to access my Google account
using my password, (nice of them to notify me, scary that they deduced
the issue from analyzing my activity).  So I changed my password and
upped the security on the account.

So of course my e-mail client, (Thunderbird), could no longer log in
using the POP server.  Google's new security protocol breaks standard
email login.  Who the hell do they think they are Microsoft?

So I had to lower the security settings, and of course, (once again),
it's all or nothing.  I'm wondering how they got my password. It isn't
something that I'd put on the internet.



Did Google say someone had actually gained access to your account?

Could be someone tried to guess the password.




According to their e-mail they knew my password, but google blocked 
access because, they tried to log in with a device I never used before, 
from a location I never logged in from before, using an app I'd never 
run before.


They could have tried to guess my password, it wouldn't be impossible, 
as I believe a weak password you remember is better than a strong 
password that you have written down where it can be found. So now I've 
changed it to something that's not easily guessed.  I just hope I don't 
forget it.


--
I don't want to achieve immortality through my work; I want to achieve 
immortality through not dying.
-- Woody Allen


--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[Bill]

On 12/31/2015 11:51 PM, P.J. Alling wrote:

Today Google informed me that someone tried to access my Google account
using my password, (nice of them to notify me, scary that they deduced
the issue from analyzing my activity).  So I changed my password and
upped the security on the account.

So of course my e-mail client, (Thunderbird), could no longer log in
using the POP server.  Google's new security protocol breaks standard
email login.  Who the hell do they think they are Microsoft?

So I had to lower the security settings, and of course, (once again),
it's all or nothing.  I'm wondering how they got my password.  It isn't
something that I'd put on the internet.



They do that to me if I log in with a new device.

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.

Re: Google can be infuriating.

[John]

On 1/1/2016 12:51 AM, P.J. Alling wrote:

Today Google informed me that someone tried to access my Google account
using my password, (nice of them to notify me, scary that they deduced
the issue from analyzing my activity).  So I changed my password and
upped the security on the account.

So of course my e-mail client, (Thunderbird), could no longer log in
using the POP server.  Google's new security protocol breaks standard
email login.  Who the hell do they think they are Microsoft?

So I had to lower the security settings, and of course, (once again),
it's all or nothing.  I'm wondering how they got my password.  It isn't
something that I'd put on the internet.



Did Google say someone had actually gained access to your account?

Could be someone tried to guess the password.


--
Science - Questions we may never find answers for.
Religion - Answers we must never question.

--
PDML Pentax-Discuss Mail List
PDML@pdml.net
http://pdml.net/mailman/listinfo/pdml_pdml.net
to UNSUBSCRIBE from the PDML, please visit the link directly above and follow 
the directions.