It uses nonsense but easy to remember words, and has number and punctuation in the middle to satisfy AD complex password restrictions.
I wrote a PowerShell script a while back that creates users, adds them to distribution lists, sets their password, blah blah blah. Once they understood why they are required to have a strong password and know what a strong password is, the chances are higher they actually take care of their passwords. I usually show them the password list generated from the Stratfor user data base incident. Third thing I show them, is how hashes and password crackers (dictionary attacks, rainbow tables) work. Another thing is, they have to understand how social engineering works and that the names of their kittens are a no go. They usually argue somewhat like "I am not important, they might attack our CEO or research team, but I am just an office clerk.". They often don't understand that their account can be used to attack more important accounts/computers. When doing trainings/awareness campaign, you have to explain them why they have to choose strong passwords. Show them some examples and it usually works pretty well. They can also create own sentences like: My Great Uncle was born in 1932 in Foobar. Results in WwydwyglAnwbys?YbrahmtlYk,ijyfp You've been running and hiding much too long
Something like What will you do when you get lonely I usually suggest my users to remember a verse or create an easy to remember sentence and take the first letters of every word. I use apg (Advanced Password Generator) on NetBSD.īesides that, I advise my Users to use the following algorithm: FIPS PUB 181 describes and algorithm for this, which has been implemented in different programmes.
0 kommentar(er)
