Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




defiant
690 posts

Ultimate Geek
+1 received by user: 330

Lifetime subscriber

Topic # 230419 23-Feb-2018 10:07
6 people support this post
Send private message

Just FYI

 

Logged on this morning to be greeted with a message saying BNZ have increased their password length, nice, new limit is now 60 characters

 

Forever their stance has been they didn't need long password lengths because of the NetGuard card, so this is a nice change


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
3501 posts

Uber Geek
+1 received by user: 1967

Trusted
Lifetime subscriber

  Reply # 1962805 23-Feb-2018 11:14
Send private message

I guess I can live with 60.. better than the old limit.. I was running with 64 as my standard length but dropped it down because so  many damn websites refuse to take 64 character passwords.





Information wants to be free. The Net interprets censorship as damage and routes around it.


886 posts

Ultimate Geek
+1 received by user: 779

Trusted
Chorus

  Reply # 1962956 23-Feb-2018 13:23
4 people support this post
Send private message

Lias:

 

I guess I can live with 60.. better than the old limit.. I was running with 64 as my standard length but dropped it down because so  many damn websites refuse to take 64 character passwords.

 

 

I dunno whether it's just because it's Friday and I am worn out or what, but I really can't decide whether you are taking the p!ss or not....


 
 
 
 


3501 posts

Uber Geek
+1 received by user: 1967

Trusted
Lifetime subscriber

  Reply # 1962981 23-Feb-2018 13:58
2 people support this post
Send private message

Wheelbarrow01:

 

Lias:

 

I guess I can live with 60.. better than the old limit.. I was running with 64 as my standard length but dropped it down because so  many damn websites refuse to take 64 character passwords.

 

 

I dunno whether it's just because it's Friday and I am worn out or what, but I really can't decide whether you are taking the p!ss or not....

 

 

Not at all. I use a password manager, and unique long passwords for every site, along with unique email addresses for each site, and 2FA where possible. Data compromises are so common now that doing anything but that is a non trivial security risk.

 

 





Information wants to be free. The Net interprets censorship as damage and routes around it.


1014 posts

Uber Geek
+1 received by user: 572
Inactive user


  Reply # 1962995 23-Feb-2018 14:25
Send private message

Lias:

 

I guess I can live with 60.. better than the old limit.. I was running with 64 as my standard length but dropped it down because so  many damn websites refuse to take 64 character passwords.

 

 

Pure VPN have a upper limit of 12 characters. Numbers, upper and lower case letters only. No special characters. But it accepts any length and characters when you set the password - it just won't let you log in with it. I kid you not.

 

 

 

Got this when I tried to post my original message hahaha it's certainly a bad word to me!

 


3759 posts

Uber Geek
+1 received by user: 2275

Trusted
Spark NZ

  Reply # 1963012 23-Feb-2018 14:56
5 people support this post
Send private message

Better than Westpac who STILL actively defend case-normalising password inputs. So 'PassWORd' is the same as 'password' or 'PASSWORD'

 

Cheers - N




defiant
690 posts

Ultimate Geek
+1 received by user: 330

Lifetime subscriber

  Reply # 1963097 23-Feb-2018 17:13
Send private message

I normally do ~25 character random generated passwords, long enough but not long enough to be tedious when typing out manually


epr

158 posts

Master Geek
+1 received by user: 50


  Reply # 1963100 23-Feb-2018 17:22
Send private message

Talkiet:

Better than Westpac who STILL actively defend case-normalising password inputs. So 'PassWORd' is the same as 'password' or 'PASSWORD'


Cheers - N



I would scoff at this but blizzard does the same for battle net passwords from memory they will accept special and ascii characters and you can get 2fa but still.

21612 posts

Uber Geek
+1 received by user: 4430

Trusted
Subscriber

  Reply # 1963225 23-Feb-2018 23:19
Send private message

They lock you out after too many wrong guesses so its not a major like things that people can grind at all day.

 

If the banks encrypted password file gets taken then I think there are bigger things for them to worry about than the customers passwords. Not like some crapbox forum site running phpbb where they seem to leak them like sieves.





Richard rich.ms

1092 posts

Uber Geek
+1 received by user: 84

Subscriber

  Reply # 1963279 24-Feb-2018 08:20
Send private message

I mostly use randomly generated 16 character passwords. Most sites accept this that I have seen.

 

I think it is a good compromise between ease of manually typing in, and securing my data.

 

 

 

Now the question is, how many of you secure your password manager with the same or stronger level of password? 

 

From my experience, first I get people to use a password manager and use randomly generated long passwords, then over time I get them to make their password manager password stronger. No point having a 6 character password securing your password manager..

 

 


3501 posts

Uber Geek
+1 received by user: 1967

Trusted
Lifetime subscriber

  Reply # 1963322 24-Feb-2018 10:08
Send private message

jjnz1:

 

I mostly use randomly generated 16 character passwords. Most sites accept this that I have seen.

 

I think it is a good compromise between ease of manually typing in, and securing my data.

 

 

 

Now the question is, how many of you secure your password manager with the same or stronger level of password? 

 

From my experience, first I get people to use a password manager and use randomly generated long passwords, then over time I get them to make their password manager password stronger. No point having a 6 character password securing your password manager..

 

 

 

 

My password manager password is 16-20 characters, upper, lower, numeric and special, and I have 2FA, forcibly disconnect any existing sessions when I login, and require the password again to view/edit rather than just inject passwords.

 

I don't think I can practically do much more to secure it.





Information wants to be free. The Net interprets censorship as damage and routes around it.


2543 posts

Uber Geek
+1 received by user: 301

Trusted

  Reply # 1963327 24-Feb-2018 10:28
Send private message

Biggest question is do these Password Managers have decent apps for phones? It's such a pain when one of the apps on the phone suddenly decides to log you out and you have to type in that long ass password again.




21612 posts

Uber Geek
+1 received by user: 4430

Trusted
Subscriber

  Reply # 1963336 24-Feb-2018 11:10
Send private message

Lastpass can type into things on my old note 4 fine, but on the redmi phone its never popped up and worked, and on a s7 I was using for a while I had its filling accesibiliuty service keep disabling and not working, but that could have been something else on the phone doing it because it was one I was borrowing to phone sit for someone who was overseas.





Richard rich.ms

133 posts

Master Geek
+1 received by user: 2


  Reply # 1963378 24-Feb-2018 13:01
Send private message

What are those using for a Password Manager? I've used Password Safe for years which syncs to Dropbox and has an okay mobile app. 


521 posts

Ultimate Geek
+1 received by user: 110


  Reply # 1963547 24-Feb-2018 16:13
Send private message

1Password for macOS & iOS across iMac, 2 iPhones & 2 iPads, Safari & Firefox works a treat. Been using it since the early days. Plus macOS Keychain Access across all those devices. The new update this week addresses the latest way that banks are securing their sites.





iMac 27" (late 2013), Airport Time Capsule + Airport Express, iPhone7, iPad6, iPad Mini2

 

Panasonic Blu-ray PVR DMR-BWT835 + Panasonic Viera TH-L50E6Z, Chromecast Ultra


Stu

Hammered
5096 posts

Uber Geek
+1 received by user: 1075

Moderator
Trusted
Lifetime subscriber

  Reply # 1963561 24-Feb-2018 16:27
2 people support this post
Send private message

Long time user of Lastpass, on a Windows tablet, Android phone, and an now also iMac.




Keep calm, and carry on posting.

 

 

 

Click to see full size Click to see full size


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.