-
Attention: The forums are in read-only mode
Suggestion Ease on the password requirements.
- Thread starter Divine
- Start date
John Foulroberts
Admin
We have no intent to modify our current password requirements. Sure, it may be less convenient to type out, but you sacrifice convenience for security.
Just my two cents.
Just my two cents.
Divine
Pirate Lord
That's fine, it's just that 1 of my accounts was made back in alpha (before the requirements) and it's the simplest password ever, and then I have this other completely different password on my other account haha. I guess it's better security in the end, though.
Davy Darkrage
Admin
Just a note that NIST has updated their password requirement recommendations to be more secure and user-friendly. Among the changes are:
- Enforce a minimum length (8 at an absolute minimum)
- Check new passwords against a dictionary of 100,000 common/bad passwords
- No composition rules (no required characters or symbols)
Stormtimbers
Pirate Lord
I see no reason why the user shouldn't be able to decide how convenient and less secure or how secure and less convenient their password is.
Davy Darkrage
Admin
Account stealing was fairly prevalent in POTCO. If it were an issue in TLOPO it would cause the support team unnecessary headaches so it makes sense to take some steps to prevent it.
I am in agreement that the composition rules should be relaxed though. Maybe just a minimum length of 12 characters and checking against a database of the 100,000 most commonly used passwords.
Jim Hexskull
Wiki Staff
I could both agree and disagree with this honestly. While I do despise the password requirements that most sites, including TLOPO set, I understand the need for them. I'd much rather take the extra few seconds to type out my password due to it's complication, than have a simple one that takes less time, but is less secure. My password is very long and confusing, however this site tells me it'd take 1 Trillion years for a computer to crack it, so I feel much better with the long confusing password.
As I said, I'm on the fence for the issue, but I lean more to the side of the stricter password requirements. Especially because kids play the game. Although, we as adults know the importance of password and account security, children may not. So requiring them to have a lengthy, diverse password will help to keep them safer in the end.
As I said, I'm on the fence for the issue, but I lean more to the side of the stricter password requirements. Especially because kids play the game. Although, we as adults know the importance of password and account security, children may not. So requiring them to have a lengthy, diverse password will help to keep them safer in the end.
Mark Scurvyfox
Moderator
I think it's safe to say that I won't be having any issues with my new password by the look of it. I'm all safe and sound, thanks @Jim Hexskull!
Jim Hexskull
Wiki Staff
I'd say that reinforces the point of a strict password requirement.
Stormtimbers
Pirate Lord
Peter Goldbeard
Pirate Lord
It'd be great if I played the game for this long... sadly I don't think it's gonna happen.
