Through 20 ears of effort, we’ve successfully trained everyone to use passwords that are hard for humans to remember, but easy for computers to guess.
If you are a Hacker News binge reader such as me, you might have read this article: The Guy Who Invented Those Annoying Password Rules Now Regrets Wasting Your Time.
This article reminded my of how stupid current password guidelines are and that we need to change that. A few months ago I wrote a random password generator function and decided that it needs an update to make the generated passwords more memorable.
Whenever I had to think of a secure password I followed these steps:
- The right order of vocals and consonants makes it more easy to remember a password.
- And so do three digits of a number.
- Add one uppercase Letter. Likely as the first character.
- Add a dot or another sign to expand to vocabulary even more.
Let’s Encrypt is the latest initiative by the Internet Security Research Group (ISRG).
Their goal is simple, every site on the internet has to be SSL secured.
They want to achieve that by serving an open certificate authority (CA) and also provide a tool to set up a secured site the easiest way possible.
And now the big deal about this, their service is free of charge!
If this is really a thing, it will be a disaster for the SSL economy. As you might know SSL certificates are everything else than cheap. So good luck to every company that relays on selling SSL certificates as their core competence.
This post is part of my Your own Virtual Private Server hosting solution project.
Get the latest version of this article here: https://gist.github.com/9392658.
MySQL is the world’s most popular open source database system.