You may get a deal on yourself too...... di Kirill
Too much of anything is bad, but too much whiskey is just enough.

Mark Twain
\\ Home Page : Post
What is your password?
By Kirill (on 2007-12-22 @ 12:37:55, in General, read 2939 times)

Well... If you are not going to tell me, then my congratulations! Just don't fall into the same trap as people at London's Waterloo Station and at least pretend that you don't like chocolate.

Seriously, the real title should be "How do you pronounce your password?".

It all started some time ago (in 2001 to be precise). It was a middle of Internet bubble and all kinds of companies offered all kinds of services for free. The problem was (no, not that it ended few months later) they all required passwords. So, what? Can't I just reuse the same password? Well, no, this is a very bad idea even if the password is very strong. Can't I just use browser's capabilities to remember my passwords? Well, no, it's just as bad idea as the previous one. So, the solution I found was: pronounceable passwords. Some may say that even better solution is pass phrases, but up until nowadays not every company would allow you to use funny, catchy, not-so-evident, but 30 characters long password. What is even worse is that some companies enforce weak passwords (no, it's not a typo - they do limit your password to something like 6 lowercase letters and numbers, but no special symbols or even capital letters).

The best implementation I found was written by Tom Van Vleck. If you would go to his Tools & Java section, you'll find a very educational story about how it all started in 1970s (it's on Java version of Pronounceable passwords)

What I did not liked about that password generator is that I had to come up with ways to make the password stronger. There are few ways to do that:

  • Capitalize some letters
  • Add digits at random locations
  • Add non-alphanumeric characters

So, instead of doing it manually each time I need yet another password, I modified his Java code to do it for me [and learned some more Java along the way]. I even had a web site where I published it (however I forgot the credentials to that free hosting provider, which, by the way, disappeared later).

A recent conversation at the office brought the idea of publishing my version of Pronounceable Password Generator back to life again. After some minor modifications (caused by slightly better Java skills), please, welcome GPW 2007 Edition!

If you have Internet Explorer 6 or 7 and JavaScript is enabled, you should not need to "activate" the applet. Otherwise, blame Eolas.

Feel free to download source code (it's actually .java file) or JAR version for offline use from command line.

Some tips to use the generator (you may call them "good password tips"):

  • generate as long passwords as you can remember
  • capitalize some letters
  • use digits
  • use non-alphanumeric characters
    one way to do that is to type digits with Shift key pressed; another way is to use N'th key among non-alphanumeric keys, for example, number each key in the sequence "`-=[]\;',." and when generator says "m2ighw5a" type "m=ighw\a"
  • if you're a Windows user, you may not know that your password is actually limited to 14 characters, case-insensitive and stored as two passwords 7-characters long each, hence
    make sure that your password is at least 8 characters long and each half contains some special (non-lowercase-letter) symbol
    Yes, I know, it may not be true since about Windows 2000 in a corporate (domain) environment. But even then, it may still be true.
  • if you need an all-digits PIN, you can specify an alphabet as 22233344455566677778889999 and then spend some time trying to find how to pronounce it

And one last thing. Do not write down your passwords ever! If you have one [thousand] too many passwords to remember, like yours truly, get yourself a password manager. What's the best one? Oh, that's another story... One idea is to use your cell phone.

Post Post  Archive Archive Print Print
The comments are disabled.

< September 2018 >

Search keyword

Console (2)
General (9)
Time Tracking (1)

Filed by month:
May 2007
February 2007
June 2007
March 2007
July 2007
April 2007
August 2007
May 2007
September 2007
June 2007
October 2007
July 2007
November 2007
August 2007
December 2007
September 2007
January 2008
October 2008
February 2008
November 2008
March 2008
December 2008
April 2008
January 2009
May 2009
February 2009
June 2009
March 2009
July 2009
April 2009
August 2009
May 2009
September 2009
June 2009
October 2009
July 2009
November 2009
August 2009
December 2009
September 2009
January 2010
October 2010
February 2010
November 2010
March 2010
December 2010
April 2010
January 2011
May 2011
February 2011
June 2011
March 2011
July 2011
April 2011
August 2011
May 2011
September 2011
June 2011
October 2011
July 2011
November 2011
August 2011
December 2011
September 2011
January 2012
October 2012
February 2012
November 2012
March 2012
December 2012
April 2012
January 2013
May 2013
February 2013
June 2013
March 2013
July 2013
April 2013
August 2013
May 2013
September 2013
June 2013
October 2013
July 2013
November 2013
August 2013
December 2013
September 2013
January 2014
October 2014
February 2014
November 2014
March 2014
December 2014
April 2014
January 2015
May 2015
February 2015
June 2015
March 2015
July 2015
April 2015
August 2015
May 2015
September 2015
June 2015
October 2015
July 2015
November 2015
August 2015
December 2015
September 2015
January 2016
October 2016
February 2016
November 2016
March 2016
December 2016
April 2016
January 2017
May 2017
February 2017
June 2017
March 2017
July 2017
April 2017
August 2017
May 2017
September 2017
June 2017
October 2017
July 2017
November 2017
August 2017
December 2017
September 2017
January 2018
October 2018

library (1)

2018-09-24 @ 9:17:12 PM
script executed in 203 ms