we keep doing this in QA and having to change it because it gets locked on the third attempt
My workplace made us change our passwords to have a minimum of 14 characters, including upper and lower case letters, at least one number and one special character, with the ‘benefit’ being that we only have to change it annually rather than every 3 months. We also have to lock our computers every time we walk away from them, which I have to do 20 or more times a day, requiring entering the password to unlock it. This meme is my version of hell.
Ours was the same. But then reneged on the ‘annual’ part.
I am in this picture and I do not like it
Now say my Name :)
No.
Especially when getting it wrong a third time means that you have to do the walk of shame to the IT help desk.
New password week for me!
or restart and try again (this often works, idk why)
It locks both your smartcard and your user account, there is no way around that.
then shit
I had a director that just couldn’t do it. Took 47 tries for him to login. Didn’t matter what computer they used. I checked to make sure there wasn’t any outside source locking them out. They just weren’t able to do it.
Just use bitwarden
Just to be clear: there is no reason anybody should be typing a password in 2025, other than maybe their master password for a keyvault. Also, 14 characters is not secure*. It needs to be at least 16, and that’s if you generate it randomly.
Four randomly selected words, XKCD style is also good
- according to Jeremi M Gosney, yer best source for password cracking and defense
Aren’t dictionary bruteforcing really efficient ?
Exactly. I use KeepassXC, but Bitwarden is also good.
