Password policy

wolfric

This is probably a subject most people have lots to say but in reality don't follow through due to inconvenience. Let's face it. If life had you putting in a 16 digit code every time you opened a door in your house you'd probably leave all the doors open instead.

I'd like to hear what other people do but more so what do you think is the best method that's doable.

What are peoples working policies on passwords.
Do you use a 1 for everything?
Have a couple you use or have variations of 1 or more.
Do you use numbers/letters/symbols?
Include non random contents (such as 7gfootballg7 etc)

I tend to use multiple hard passwords but for general forums there tends to be too many to have one for each and i end up using variations (and even forget what variations i've used for each site and lock myself out before I've guessed them all)

FSL

I use real passwords for anything with a monetary connotation and my working email. As far as forums and anything else asking for, but not really needing, an email address, is concerned it's really irrelevant. If someone is sad enough to want to impersonate a mnemonic and post a load of rubbish or send mails from a never accessed account I wouldn't even bother to ignore them.

I use passpack.com. Every password I have is different, varying between 15 and 50 random characters and symbols. I use variations of one "master" password to access passpack.com, my main email, and services like dropbox and logmein (so I don't have to go through the process of logging into passpack.com everything I want to use them).

Improbable

I use random combinations of letters and numbers for my passwords. Same system as FSL. One for important content such as work and bank etc and a separate one for things like forums and various other websites.