Zorin =^o.o^=May 12, 2023

I really hate password/PIN code expiration. It WORSENS security, because you're forced to remember a new password/PIN and after forgetting it a few times will probably write it down. Or you might be tempted to use an easier to remember and less secure password.

NIST no longer recommends expiring credentials regularly. PLEASE STOP DOING THIS.

Show threadBaral'heia Stormdancer ΘΔ🐲May 13, 2023
@zorinlynx I personally use a randomly-generated password card to generate my passwords that I keep with me at essentially all times. That way all I have to remember is the column and row of the first letter, plus the direction. It's not perfect but it does help me be a bit more secure when passwords get expired. They can be generated from multiple sources, here's just one example of what one looks like:
Show threadKonomi Kitten
@baralheia @zorinlynx oh I like that ~
May 13, 2023 at 9:14pmWeb