Like everyone else, I don't change my passwords often enough.
Most of the time, it's ok. I mean, most of the passwords are to things like message boards and whatnot. So, if someone manages to get my password and starts posting as me, who cares? I'm sure that everyone who knows me through a message board already thinks that I'm an asshole...
But then there are passwords that I use when checking email, changing my server settings, checking my credit card statements, etc. I'm actually relatively paranoid about those -- to the point where I don't even trust Firefox's password manager to handle them (which, unfortunately, is a fear that is not unfounded [slashdot.org]). But I still don't change them often enough.
I think that I know part of the problem. For the longest time, I have been relying on my (terrible) memory to judge when each password should be changed. And because of the uncertainty of when they were last changed, I tend to wait too long until the next change. So, from now on, I am recording the date when each password was last changed, which will hopefully encourage me to change it more often.
Labels: computers
<< Home