My password to the Washington Post Company's intranet recently expired, so I was prompted to come up with a new one. As I usually do, I had the handly app 1Password generate a random 10-character alphanumerical string—fPCxHn6Z2G.
That got rejected as insufficiently secure. You see, it didn't use any special symbols! And everyone knows special symbols are the key to password security. So I tried M@tthewYg1esias instead. That worked. After all, it's got upper and lowercase letters, a number, and a symbol. No hacker could ever crack that kind of security. Now fortunately it was easy enough to have 1Password churn out a string that was both actually secure and that fit the corporate policy. But it's a potent sign of how dumb we continue to be about passwords. What's even stranger in this case is that the company's official training materials about password security are actually quite good, and it shows that on some level the firm clearly has a strong grasp of information security procedures. It's just not in any way aligned with the actual way the company operates.
TODAY IN SLATE
Meet the New Bosses
How the Republicans would run the Senate.
The Government Is Giving Millions of Dollars in Electric-Car Subsidies to the Wrong Drivers
Scotland Is Just the Beginning. Expect More Political Earthquakes in Europe.
Cheez-Its. Ritz. Triscuits.
Why all cracker names sound alike.
Friends Was the Last Purely Pleasurable Sitcom
This Whimsical Driverless Car Imagines Transportation in 2059
- Protesters Take to the Streets to Sound Alarm on Climate Change in New York, Across the World
- Knife-Carrying White House Jumper is Vet who Feared “Atmosphere Was Collapsing”
- North Korea: American Sentenced to Hard Labor Wanted to Become “Second Snowden”
- Almost One in Four Americans Support Idea of Splitting From the Union
Did America Get Fat by Drinking Diet Soda?
A high-profile study points the finger at artificial sweeteners.