Question about the new password rules.

[llloyd]

Wow guys. I was just forced to change my password. 12 characters long? That's as strong as my bank password. Isn't that a bit overkill? Just wondering as that, to me, seems overkill. If I was protecting financial data, sure.

[BigBizkit]

We do believe that the data you are trusting us with is worth protecting. 12 characters are a reasonable security standard. If we made it less secure and i.e. a big mod author's account gets stolen, then potentially thousands of users are put in jeopardy if the hijacker were to abuse the trust that mod author has with the community in nefarious ways.

 

If you are struggling to remember your password, I would recommend using a password manager such as LastPass.

[llloyd]

Ok, but it's very rare to see 12, 8 with a special character requirement is standard, I've only seen 12 on my bank's website. So I am a bit surprised is all. O.o

[DoctorKaizeld]

Pretty sure 12 is the new standard

[llloyd]

If that is then that'll suck hard core. Umm. As with 8 characters, lower, upper, number, special character , that's like 100s of billions of password combinations. Something for me to Google later. O.o Apologies, this is blowing my mind that something that could be in the trillions of combinations isn't ' enough ' . O.o Ok, let's say an 80 character set, that should be 80 to the 8th power or, if this calculator is right, 1,677,721,600,000,000 possible combinations. O.o o.O O.O That's a lot of combinations for an 8 character password. Hmm. Well, I'll do some Googling but if that is no longer enough then that sucks. >.<

[Shanannigan]

The only thing I found annoying is that I already had a strong password that met the criteria, but was still required to change it.

[Guest deleted34304850]

Reading various posts about the recent security updates on Nexusmods, it's no wonder cybercrime is so profitable.

Just. Staggering.

[AugustaCalidia]

There would not be such a fuss about password length and composition if people would just use a password manager. There are many quality password managers available in cloud and non-cloud editions. They are extremely easy to set up and use. I've used a non-cloud password manager for thirteen years. That clever little program has made my online life so much easier and safer.

[DFiNo]

There would not be such a fuss about password length and composition if people would just use a password manager. There are many quality password managers available in cloud and non-cloud editions. They are extremely easy to set up and use. I've used a non-cloud password manager for thirteen years. That clever little program has made my online life so much easier and safer.

Would that clever little program by any chance have a name and/or link you would share??

[acidzebra]

computers have become a lot faster and password leaks more common (and people tend to use the same passwords over and over) and so brute-forcing and other fun hacks have become a lot easier.

 

Humans suck at passwords; let tools like

https://www.lastpass.com/

do that stuff for you and generate a truly random and strong password. And use two-factor authentication where possible.