Worst Passwords Of 2015 Reveal Our Stupidity - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Comments
Worst Passwords Of 2015 Reveal Our Stupidity
Threaded  |  Newest First  |  Oldest First
Ariella
50%
50%
Ariella,
User Rank: Author
1/21/2016 | 9:53:08 AM
Re: Amazing
Even Cisco typically uses a version of this and ran into trouble when it deviated. See http://www.theregister.co.uk/2016/01/12/cisco_password_snafu/?mt=1452646807203:

"A number of C-Series servers have shipped to customers with a non-standard default password which prevents access to the Cisco Integrated Management Controller (CIMC) unless the configured password is provided," the Borg says in a new Field Notice.

Kit made between between November 17, 2015 and January 6, 2016 was misconfigured. If you get one and try to get it working with Cisco's default admin password – "password" – you'll look like a very silly sysadmin indeed.

The fault is all Cisco's: for reasons it's not explaining, the firm instead set the default password to "Cisco1234".
Ariella
50%
50%
Ariella,
User Rank: Author
1/22/2016 | 10:05:36 AM
Re: Stupidity of the rules
@Banceck I absolutely loath having such strict guidelines for passwords. That's the kind of thing that gave rise to this, which exists in several forms.

I also get annoyed by having to change mine every 30 days or whatever on certain sites. I understand why they think it's more security, but these are sites that don't deal with sensitive information. 
Ariella
50%
50%
Ariella,
User Rank: Author
1/22/2016 | 1:42:51 PM
Re: Stupidity of the rules
@Michelle oh, yes, and I sometimes don't remember which ones are case sensitive and which ones demanded a capital and special character. So I often come close to locking myelf out as I try out variations and then ask for a password reset via email.
impactnow
50%
50%
impactnow,
User Rank: Author
1/22/2016 | 6:47:19 PM
Re: Stupidity of the rules

 

Ariella LOL that happens to me all the time. This list is representative of the insanity of passwords. Why there isn't a standard password requirement for all industries is beyond me. Every company having their own requirements makes the life of consumers miserable we are constantly playing password hide and seek. Companies then increase their operating costs to support the password chaos. No one wins.



2021 State of ITOps and SecOps Report
2021 State of ITOps and SecOps Report
This new report from InformationWeek explores what we've learned over the past year, critical trends around ITOps and SecOps, and where leaders are focusing their time and efforts to support a growing digital economy. Download it today!
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

News
Remote Work Tops SF, NYC for Most High-Paying Job Openings
Jessica Davis, Senior Editor, Enterprise Apps,  7/20/2021
Slideshows
Blockchain Gets Real Across Industries
Lisa Morgan, Freelance Writer,  7/22/2021
Commentary
Seeking a Competitive Edge vs. Chasing Savings in the Cloud
Joao-Pierre S. Ruth, Senior Writer,  7/19/2021
Register for InformationWeek Newsletters
Video
Current Issue
Monitoring Critical Cloud Workloads Report
In this report, our experts will discuss how to advance your ability to monitor critical workloads as they move about the various cloud platforms in your company.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll