Replying to nobody

And once your key is compromised once, everything you own is compromised.

This idea flies in the face of good security practices - don’t use the same password for everything. Especially without key rotation support. At least with oauth you can change your password and revoke sessions.

I don’t see this as an improvement.
Avatar
Laeserin 1y ago

People use the same password everywhere and when the sys admin forces an updated they increment the number at the end or beginning by 1.

I call it password++ .

Reply to this note

Please Login to reply.

Discussion

Avatar
Laeserin 1y ago

This is why 2FA was invented. You have to break both things, but they can always be the same two things.

Avatar
Ľḭṿḙśƫṟãɖãṁṹṧ💫#RunCoreV30 1y ago

lol

i've had the same password since late 90s's

its 12 random letters, numbers, characters that I forced myself to remember...

Of course I only ever changed the 1st and last characters every few months.

Avatar
Ľḭṿḙśƫṟãɖãṁṹṧ💫#RunCoreV30 1y ago

and not on any leaked password databases

Avatar
Laeserin 1y ago

Better than most. People be like ABCabc??123-56