WordPress.com Forums » Topic: account is not secured?

drmike on "account is not secured?"

drmike — Mon, 02 Oct 2006 21:15:32 +0000

I go with two words and a number stuck in between them for a password myself.

raincoaster on "account is not secured?"

raincoaster — Sun, 01 Oct 2006 14:21:43 +0000

Going back to the original point of this thread, I don't think WordPress has any obligation to protect people against stupidity of that particular level. You're supposed to know how passwords work and handle things on that end yourself; if you can't remember to sign out and you "accidentally" let someone malign use your computer, you shouldn't be allowed to blog unsupervised anyway.

I think there's an expectation of a minimum level of competence, and that it's fair.

podz on "account is not secured?"

podz — Sun, 01 Oct 2006 08:21:40 +0000

I have 1 password that I use anywhere as a 'first choice' because it's quick and easy to remember. That is an 8 letter number.

I use passwords like this for stuff that is sort of important: Tv6Va4rV
8 letter/number combination

For really important stuff - like all my domain passwords:
PWG_O0[bM}VuDWzg
16 character/number/letter combos

And because I use them I have a password manager:
Keepass (it's free)

nosysnoop on "account is not secured?"

nosysnoop — Sun, 01 Oct 2006 02:04:43 +0000

What is a good password? I've heard of combining numbers with letters. Now I'm going by the password that WordPress sent me.

podz on "account is not secured?"

podz — Sat, 30 Sep 2006 10:35:16 +0000

For the people who search:
"Shouldn't wordpress make users type their password to see their profiles at least?"

If you had logged out the cookie would have been expired and your information would be safe.
Your information is secure from our side but you do need to do the sign out bit - that and have good passwords too.

timethief on "account is not secured?"

timethief — Sat, 30 Sep 2006 00:26:43 +0000

This blogger has elected to delete his or her account.

wcdctest1 on "account is not secured?"

wcdctest1 — Fri, 29 Sep 2006 21:08:14 +0000

i noticed that if i log in, blog a little bit, and "accidently" let someone else use the computer without logging out, anyone could change my profile including my password. Shouldn't wordpress make users type their password to see their profiles at least?