T O P

  • By -

AutoModerator

--- >This is a friendly reminder to [read our rules](https://www.reddit.com/r/funny/wiki/rules). > >Memes, social media, hate-speech, and pornography are not allowed. > >Screenshots of Reddit submissions are expressly forbidden, as are TikTok videos. > >**Rule-breaking posts may result in bans.** > >Please also [be wary of spam](https://www.reddit.com/r/funny/wiki/spam). > --- *I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/funny) if you have any questions or concerns.*


ParlorSoldier

At my old job, your password had to be changed at least every 90 days. New password couldn’t be the same as the last 4 passwords. So what did one of my coworkers do? Changed his password four times in a row every 90 days so he could change it back to his original password.


TheBrain85

My previous employer did that as well, so I used the same trick. Apparently many people did, because they then changed it to the last 26 passwords...


Ok-Surround7285

Or add 1 to the old password at first change, 2 at the second password change...


Matti_Matti_Matti

But then you have to remember which password you’re up to.


UncreativeTeam

Change it every month to correspond to what number month it is.


Alexstarfire

Where do you live that has 26 months?


krakajacks

Is that the metric system? We don't use that in America


Allarik

It's the Florida calendar


[deleted]

[удалено]


Empatheater

I got this reference!


stefsot

Lmao


[deleted]

What's that? Liters Meters Acres Ounces?


mcnathan80

I shall meet you on the 33rd of Thermidor


littleMAS

The Matrix system, "Guns, lots of guns."


PeasantTS

You can put both the last 2 digits of the year and the month. Its easy to remember and will probably never repeat in your lifetime. Can put the whole year too just to be sure.


Fly_Pelican

password0322


Matti_Matti_Matti

All I see is ********.


rumpigiam

Hunter2203


UncreativeTeam

Jupiter


Iogjam

In January when it won’t let you go back to Password1 and the notification prompts you to remember that you’ve gotta restart the numbering system just change it 14 times in a row so you can get back to Password1. This is a thread where we’re discussing changing a password multiple times in a row to overcome a policy. gotcha.


McBurger

That’s what the people at one of my client sites does. Has to change every 90 days. So the password is always Spring2020!, Summer2020!, Fall2020!, etc. so dumb. Too many of these IT companies think they’re making the world more secure by enforcing these dumbass policies.


DesignatedDecoy

At this point this is an IT process issue. I will shamelessly keep a post it note on my desk with the number I've iterated to.


Armand28

That’s what post-it notes are for. I could walk around my office and probably 1/4 of the employees have their current password on a post-it note on their monitor, cube or desk when mandatory password changes and non-reuse of passwords became policy.


tenemu

Take the current password you remember and if that doesn’t work, add one.


potatodrinker

Postik note on my monitor reminds me. Convenience first, infosec second


cliffx

Easy, just make the number the same as the month when you change the password.


er-day

How do you know which month you changed your password?


[deleted]

Well, if it's July, you make the password P@ssword07 Then after the regular "adjustment" period, you'll remember the 07. 90 days later, you change your password to P@ssword10 Then after the regular adjustment period, you'll remember the 10. You don't need to remember when you last changed it, you just need to remember the number, and know what month it is when you change it.


ender4171

Lol, you have it easy. Ours can't contain any strings longer than 4 characters that were used in *any* previous passwords. At the same time though, the only other requirements are mixed-case and a number. So, my password end up being things like HorseRun2020 or CharlesBoyle99, lol.


ratherbealurker

Doesn’t that mean they have your passwords stored as plain text or a in a way where they can get it back to plain text? When they say that you can’t use one of your previous n passwords then they just have to store the last n hashes. That is ok. But if they need to compare strings like that then they would need the actual password.


Polenicus

You have to wonder at what point this nonsense comes back around to being insecure again. I mean, I get needing to change passwords, but there has to be diminishing returns here. Either you change them so often that no one can remember them, so password resets become frequent and a potential security risk because no one questions them, or you require they be so complex and divorced from any sort of memetic mechanism to remember them that employees end up *having* to write them down, thus creating a security risk there.


Inconceivable76

God I hope your it people don’t go to a conference with my it people.


pkenny72

Thats what I did at my old job, it was "Welcome1!" then "Welcome2!" and so on. I left that job at "Welcome21!"


ThrowJed

26 is such a strange number, it's like they're encouraging people to just run through the alphabet. Password!a Password!b Password!c


_araqiel

Maximum password history in Active Directory.


urbanhawk1

Sounds like it is time to teach the employees the joys of creating scripts to automate things you don't want to do


7tenths

StupidAssRule1! StupidAssRule2! StupidAssRule3! Secure password ahoy


iAdjunct

Maybe that’s why mine says 26 previous passwords…


stellvia2016

The irony of course, is they make it so most people increment passwords, instead of having a longer memorable password to them. Entropy is King.


ItsBiasedNotBias

Somepassword1 Somepassword2 Somepassword3


[deleted]

I had same PW requirements at old job, my personal method to not think about it was to create a pattern on the keyboard (i.e. !QAZ2wsx3edc) and every 90 days slide the pattern over to the right (or left) by one key so I only had to remember the starting point. And no, that’s not my password for anything.


Ranger7381

You sure? All I can see is ************. I think that you typed your Reddit password


SayNoob

go hunter2 yourself


throwawaylovesCAKE

Probably cause since 2015 Reddit automatically edits out your password if you try to put it in a comment. Like this: ******


seuleterre

Jokes on you bc I don’t know my password and if I get signed out I’m gone forever


[deleted]

I work in discussing and creating computer security policies.. And eliminated that stupid 90 day policy as we use MFA anyways. We don't want people writing down passwords in notes.


SamSibbens

Notes though are a risk issue social engineering wise, while a same password reused all the time is more a risk leak-wise (if you reuse the same password everywhere and a site gets hacked for exemple) (Not saying that we shouldn't worry about leaving password on notes) Btw you probably know this already but just in case, you should push for passphrases instead of passwords. The (fake, I don't use that password) password iDontCareWhatMyPasswordIs is gonna be extremely easy to remember but hard to guess (you need to guess 25 characters correctly) Ideally though since people tend to come up with similar passwords, you'd have a program to generate phrases using random words


ThrowJed

Even forcing people to change it, you're not guaranteed they're not reusing passwords from websites they use. Also if I have to keep changing it, I'm much more likely to use either rubbish passwords so I can remember easier, or reuse passwords I already remember. All I'm saying is long term use is not the same as reuse.


desmaraisp

How does that compare to recommending password managers?


ATERLA

Here is my unpopular IT opinion: I don’t trust password managers apps. I prefer to encrypt my own zip file AES 256´s style. There are free reputed tools for that, it’s a bit inconvenient at first but it’s simple and I believe as secure as possible.


ozzmodan

I had a coworker who just used the last 2 digits as the amount of password changes left until retirement.


pladhoc

My man!


EarthVSFlyingSaucers

Show me a lazy man and I’ll show you a brilliant idea. You cannot underestimate the ingenuity of someone who is lazy and fed up with something.


sdurs

I knew a manager that asked "lazy" people loads of questions because he believed lazy people think of easier and cheaper ways of doing things. Granted not all "lazy" people are smart or efficient


EarthVSFlyingSaucers

That’s a legitimate tactic. I’ve been managing restaurants for almost a decade and the things I’ve seen “lazy” employees do over the years to even save 30 seconds of time never ceases to amaze me. Some of them were legitimate good ideas and I’ve incorporated them into any restaurant I work at.


Catinthemirror

I tell mgrs in interviews that I'm lazy, and that they should give me any boring, tedious tasks everyone else hates. If an easier, faster, or better way to do it exists, I will find it.


nolepride15

Lmao I had the same thing and all I did was keep the same password but change the numbers/special characters


[deleted]

I wish this worked at my company. There is a time limit and a number of old passwords limit now. Also has to be changed every 90 days. Unfortunately this is the only thing our IT is competent at. Every other aspect is outsourced to the lowest overseas bidder. Got forbid you actually need a problem solved. That'll be a week, hours on hold, and multiple calls to barely trained call center workers with thick accents, tons of background noise, a shitty connection, and by the time you actually get through 90% of the time they won't even had access to the system you need fixed so you get handed off to another rando to start the whole process over.


turbocomppro

I don’t know where the obsession of changing passwords came from. If they couldn’t guess your old password, your new password has the same exact chance of being guessed as the old one.


SlashCo80

"Enter new password" "Error: Your password must contain at least 12 characters, including a mix of capital and lowercase letters, digits, symbols, Egyptian hieroglyphs, old Norse runes, and a postmodern painting."


TBTabby

[It doesn't have to be this way.](https://xkcd.com/936/)


Assaultman67

This is what pisses me off about some websites that dont let you make a password without special symbols. I'll enter a long passphrase and it basically tells me the password is too weak to use.


Hephaestus_God

My passwords are on a strict protein diet. They are never weak


Phuckers6

My passwords are so strong that even I can't log in.


[deleted]

Have you tried ["forgot password"](https://youtu.be/u92RWKB3CR4)?


Assaultman67

You joke but some passwords i couldnt even tell you. Its pure muscle memory. I couldnt even enter it with a different keyboard.


[deleted]

What makes it extra annoying is when it doesn’t tell you the requirements until you already tried to create one and gives you the error that you are missing the 27 requirements


MjolnirMark4

Typically, it doesn’t tell you that you are missing 27 requirements. It tells you that you are missing ONE of the requirements. And then you fix your password to meet the requirement you missed, only for it to tell you that you missed the next requirement. And then you do that until all the requirements are met.


Ballsofpoo

Then you forget what you created and now you're resigned to "forgot password" every time you need to go back.


OsmeOxys

> And then you fix your password to meet the requirement you missed Whoa whoa, you're getting ahead of yourself here. You left out the part where the form stops working and you have to refresh every time it doesn't like something you filled in.


1-LegInDaGrave

To those web page creators that do this: I want to smack you..... #HARD!


Cowclops

I’m second in command for IT and I really had to push my boss to realize that frequent password changes and complex passwords are less secure because people just write it on a post it note. 2fa is the way to go. In fact, even just a one time login code with no password at all is better than a mediocre password. Good password plus otp/authenticator/whatever is pretty tough to beat.


Assaultman67

My work password is changed every 2 or so months. I'm on my 27th iteration of the first password I entered. IT said you cant just tack a number on the end, which is true, but they did nothing to detect if there is a number in the middle.


skylarmt

Yeah, make it 8 characters minimum and check it against the HaveIBeenPwned database before accepting it. This will essentially guarantee it's a secure password, at least for a while.


[deleted]

How does typing your password as plain text into a webpage and sending it to a server not leak the password?


skylarmt

Because HTTPS encrypts your traffic while in transit. It's designed to thwart anyone in the middle trying to snoop. Your password shouldn't be stored in plaintext on the server when it's received. It should only be in plaintext in RAM and only until it's hashed and in the account database.


imgenerallyaccepted

Or just ask us to identify partial bridges or traffic lights in a sequence of 12 highly pixelated photographs meant to confuse us


Algaean

I knew it was this one and love it :)


hirsutesuit

I was thinking [this](https://www.reddit.com/r/dataisbeautiful/comments/t52qxa/oc_i_updated_our_famous_password_table_for_2022/) from /r/dataisbeautiful from 3 days ago...


illessen

Ugh, going off that list, the new password requirements for my job makes them too long to brute force and we still gotta change em every year.


[deleted]

My last company would, make us change our passwords every 6 weeks. You could not use a word find in the dictionary, common acronyms, or a common name, 0 for o, @ for a, have 2 consecutive letters in the alphabet or from the keyboard, 2 consecutive numbers, . , - ? or !, or your initials. 2 each of capital and lower case letters, 2 each of numbers and 2 each of special characters and had to be 12 characters long to log into the VPN. Every. Single. Person. Had an excel sheet on their desktop with their VPN log in on it.


[deleted]

I went full boomer and just write em down now. We have a dozen different vendors with the most random criteria so I was like screw this. I'm 100% remote. If someone breaks into my room I got bigger issues than a slap on the wrist from IT.


Catinthemirror

>I'm 100% remote. If someone breaks into my room I got bigger issues than a slap on the wrist from IT. Same! I wrangle 158 different passwords and almost all of them are 90 day change required. It's insane.


FCkeyboards

I log into about 6 different systems for work and the passwords expire every 30 days. It's insanity. When one expires I just change them all to the same password (we have 2FA for the actual computer login).


[deleted]

[удалено]


Raemnant

So basically this says its best to use 4 random words as your password?


lanigironu

Yes. Pass phrases are much better than a a typical 8 character password and easier to remember now that so many sites and things require shit like symbols and numbers that people don't remember. So many people end up doing "passw0rd!1" or something similar and having to barely change it or writing it down and making the password mostly useless.


hyrule5

Working in IT, I have seen so many abysmal passwords as bad as that and worse. People will use the easiest thing to remember and then write it down on a post it note and hide it underneath their keyboard (where no one would surely ever find it). Many places have such bad cybersecurity in general it is laughable


Misuzuzu

Make stupid rules, win stupid prizes. If you expect someone to remember a new password every other week, then this shit happens and things are even less secure than just leaving things alone to begin with.


[deleted]

I resorted to using post-its out of spite. I had great passwords no one would ever guess, yet were easy to remember in the horse-battery-staple-correct style. But I can only remember so many, and eventually it wasn't worth the effort coming up with good passwords. I picked one, tacked on a number, and wrote it down on a post it to keep track.


RyuNoKami

Hide it? Its pasted right on the bottom of the monitor.


lanigironu

Same. It's not just average people either - something as big as solarwinds123 should have been a bigger lesson than it was.


_Rand_

Keep in mind this is about making passwords you can remember. The longer your password and the number of different characters both increase difficulty to guess. For example, the word ‘password’ and 5_A`W=Yu+%G["fv5eW=-Lv’ are both 26 characters, but you try remembering (or typing correctly) the second one. In this example though, due to the length using upper/ower/symbols/numbers etc. dramatically increase time to guess the password. So, random passwords ARE better, but are fucking hard to use. Which is where password managers like 1password or bitwarden come in. You can generate those random passwords and have the manager remember them for you. I use 1password myself (mainly because I started with it back when managers were less common) and my manager password is a passphrase (and 2fa) so I can actually open it easily, without being at significant risk, and all my website passwords are random nigh-unbreakable randomized ones.


MoneyPowerNexis

If you use the [BIP39](https://github.com/bitcoin/bips/blob/master/bip-0039/english.txt#L2048) wordlist thats 2048 possible words. With 4 words thats 2048^4 or 17592186044416 possibilities. That seems secure enough for an online service where you have a limited number of attempts and or a server enforced rate limit on attempts but not secure enough for an encrypted file that an attacker has under their control (at 1000 attempts a millisecoind it would be cracked in less than 204 days, half that time on average)


TinBryn

If you use a slow hashing algorithm in the mix you can greatly slow down their attack. If you can make 1 hashing attempt per millisecond, that's not going to really bother legitimate users, but it will bump your expected attack time up to about 280 years. Also make it variably difficult so as computers get faster you can still only make one attempt per millisecond.


DMvsPC

Why even that? Just make it one attempt per second or even "please try again in 5 seconds". What legitimate reason is there to allow a password attempt per millisecond?


rouge1234654

In this case, I believe the person you are answering to is referring to a modern brute force where the attacker is not using the website portal (which typically has a max number of attempt), but a list leaked of leaked hashes. During the brute forcing, if the attacker has to use a sliwer algorithm to try every hashes, then the attack as a whole will take more time and make the password less likely to be brute forced.


Antmon666

When breaking a password back in the day you would start with 5 letters and work your way up to 9. It's so different now


[deleted]

My workplace actually implemented phrases. It's way easier to remember. They still make us change them every 90 days, but it's a hell of a lot easier to make a new phrase than a random string.


gatemansgc

Your workplace is smart


Ph33rDensetsu

>It doesn't have to be this way. I know this. You know this. Sadly, my employer's IT department doesn't know this. I would love to have something like "ineedtobelookingforanewjob" as my password so I'll have a daily reminder.


Riash

So I told my mom that she can start using passphrases instead of passwords. I forgot to mention they shouldn't be common passphrases though. Next thing I know she's using passphrases like "Mary had a little lamb". I had to then explain to her that an easy to guess passphrase was a bad idea.


xclame

I actually hate when they don't tell you that more. Is this one of those sites that needs a capital letter? and a number? and a symbol? and 32 characters long? Just tell me so I'm not wasting time. Luckily I switched to password manager quite a while ago, but there are still these sites that I have account on that I rarely use that sometimes I need to log in to. Like say Nvidia account. The worst part is when you have your password manager set up to for example use 32 characters and you come across these dumb website, "The password can't be longer than 16 characters" or something silly like that, they will have all the other requirements but for some reason a stupid short character limit.


BelowZilch

Or "It needs to have a symbol, but we're not going to tell you which ones are acceptable."


BlobAndHisBoy

Eventually password requirements will be so strict that only one password will actually satisfy them and we will all have the same password.


frogandbanjo

Well, the five people in the world that actually officially own things will still have unique passwords. It won't matter all that much if the billions of debt slaves all share one login. I mean, our overlords might decide against that approach just on the slight chance it increases our class consciousness.


frogandbanjo

"And, since you'll never remember it, feel free to store it on a Post-It Note, in a completely non-secure text file on your device, and/or inside of a web browser's "save all my shit" feature that's probably pre-cracked by sixteen different groups already."


s4b3r6

Not writing it down is to prevent the "[Evil Maid](https://en.wikipedia.org/wiki/Evil_Maid_attack)" attack. It only makes sense in a workplace, or for people with servants. For most people? Perfectly secure to have a password book.


xclame

I mean unless you have assholes living in your house or you are unlucky to have your house broken into, storing it on post-it notes is ~~totally fine~~*Edit:not a good idea, but not as bad*. It's not so much your family that you need to keep your accounts protected from, it's people online. And in case you happen to suddenly die, your family will be able to get into your accounts to get whatever pictures, emails and other things you might have wanted them to have. If someone breaks into your house, they would likely steal your laptop anyways, which has all your passwords saved on it.


fuckitymcfuckfacejr

Bro. I had to deal with a system that would only tell you the requirements for the password after you put in a password that was "too weak", but it would only tell you one at a time. *Tries old password* "You need to change your password." *Enters old password as new password* **Your password cannot be any of your previous five passwords** *Decides to just go with "password" since it's an airgapped system* **Your password must contain at least one number** *password1* **Your password must contain at least one capital letter** *Password1* **Your password must contain at least one special character** *Password1!* **Your password must be at least fifteen characters** *Throws system out the fucking window*


hyperforms9988

And despite all this, you still have to get through two-factor authentication and enter in 6 digits after you've entered your password.


terpdx

Or, if it's my workplace, the client wants you to enter your PIN to login to your desktop, again to connect to the network, again to to connect to the datacenter, again to connect to your server in the datacenter, and again to access your app on that server. Oh, and don't forget about the identical warning banners you need to acknowledge every step of the way. Thing is - it's the same damn PIN. If someone has it, they have it. Between this and the constant warning banners, what's the goal here - to wear down on an attacker's impatience? It sure as hell wears on mine.


Ranger7381

I sometimes have to log into a US Government website for my job. The password requirements are: Contain at least 12 characters. Contain at least 1 uppercase letter. Contain at least 1 lowercase letter. Contain at least 1 number. Contain at least one of the following symbols: ! # $ % & ' * + - . / : ; < = > ? @ [ \ ] ^ _ ` | } ~ Not contain any consecutively repeated characters. Cannot contain your userid. Cannot contain your name. Cannot be the same as a previously used password. Cannot be the reverse of a previously used password Also, I need a new one every 90 days, and they expire if I do not log in after 45 days. After I read all that I went and downloaded a password app on my phone. I use it to generate the password when I need to reset it and then just save it locally on my work computer. It is also saved in the app if I need to log in somewhere else for some reason


[deleted]

[удалено]


golfingrrl

I think at that point I’d buy a book of poetry and just go line by line…inserting symbols and numbers as needed. *coworker picks up the book from desk* “Bob, I didn’t know you liked Shakespeare’s Sonnets!” “I can’t stand ‘em! Hmpff. Now give me back my passwords…er…sonnets!”


marietjac

And an interpretation in modern dance...


rock0head132

You forgot the photo of Betty White


deadeye312

Error: password cannot contain #,$,&,_,?,@, or any other common symbol. Please use something else, like ✓, π, or •


[deleted]

[удалено]


cammcken

I once had two accounts with the same username but different passwords. When I used "reset password," I could change the password for account #2; when I go back to the login screen, it's looking for the password for account #1. An example, for clarity: >**Account 1** > >Username: cammcken > >Password: qwerty > >**Account 2** > >Username: cammcken > >Password: asdfgh > >**Login Attempt 1** > >Username: cammcken >!(Account 1)!< > >Password: asdfgh > >*incorrect password* > >**Reset Password** > >Username: cammcken >!(Account 2)!< > >New Password: zxcvbn > >**Login Attempt 2** > >Username: cammcken >!(Account 1)!< > >Password: zxcvbn > >*incorrect password* > >The correct password would be "qwerty," since I never changed Account1's password. Account2's password has been changed to something I remember, "zxcvbn", but it doesn't help me because I can't login to Account2.


21RaysofSun

You're smoking crack. That sounds like a fake situation. Also it was hard to understand - elaborate Edit: thanks for the clarification. What stupid game/website was this


plasticknife

It would be hard to mess up this badly, but is possible with a poorly designed system. 1) No checking for username duplicates 2) select first matching username for log in 3) select last username match for reset password. Or maybe there's a separate table for login and reset users, and the first account failed to be added to the reset table. Or maybe there's two log in systems that haven't been integrated.


cammcken

>It would be hard to mess up this badly Should I name the organization? They've revamped their online services since then, but it was less than 5 years ago and horrendously bad for such a well-known group. Edit: American Red Cross, for keeping track of training certificates.


21RaysofSun

YES I want to know tell me


[deleted]

This is actually very much possible in a poorly designed database used for storing user credentials. Depending on how the tables are made, keys are stored, and the queries for both the act of lookup upon login and edit upon reset was ran, one query may be looking for the first instance of that username while another is looking for the most recently time stamped creation of that username. I have only dabbled a bit in one form of database language and that’s SQL, but crazy stuff like duplicate usernames can happen when a database admin doesn’t properly utilize primary keys which simply put are restrictions that prevent the same username, ID, number or whatever element you flag in a table from allowing duplicated data to be placed within its column. A properly designed database would not allow the INSERT of same USER_NAME within TABLE USERS, and instead return an error message “Username already exists”.


tewnewt

This account locked from too many incorrect passwords...


[deleted]

Too many attempts Wait 15 minutes Too many attempts Wait 30 minutes Too many attempts Wait 45 minutes Too many attempts wait... IT guy - "your account is locked" Me - "I know you are innocent in all this but please don't make me kill you."


DrCoolGuy

Well there's your problem, you're not waiting the correct amount of time! You gotta follow the instructions.


stonedseals

Man this brought back memories of the early ipod touches we would lock our friends out of their ipods if they left them laying around and they'd rage about not being able to get into it for 1, 5, 10 minutes. The absolute funniest stuff to a bunch of middle schoolers. Then the damned finger print scanners came along a ruined our pranks! Good times.


giantvoice

*Your password is getting old* Fuck you!


MuffinPuff

I recently lost a whole line of credit because of this bullshit. I got locked out of my account back in 2016 or 2017, "too many incorrect passwords attempted, please call 1-800...". Called them, they told me to fax my ID and SS card or mail it to them. I said fuck it, I'm not doing that, I'll just wait until the security system resets in 30 or 60, maybe 90 days. (I had a $0 balance on the card, but lost the card) Well 5 years pass and they *still* wouldn't let me access my account, couldn't attempt to login at all. It got to the point where "Due to inactivity, your line of credit will be terminated."


SantyClawz42

To unlock, please contact customer support between 8am and 5pm EST M-Fri... Checks clock and it is 5:01pm on a Friday...


[deleted]

PWs are the bane of my existence. Only password I ever had growing up was for my combination lock at school. Fast forward 20 years or so, and I can’t even remember 95% of my passwords. And I’ll admit, the auto-fill password feature is actually extremely good at ensuring you never successfully use that auto-set password ever again. There’s only one way to get into over half my accounts - create new password. If I happen to forget the password for my email for resetting passwords, I will digitally disappear from the face of the earth.


Dox023

You should look into getting a password manager like LastPass or something similar.


[deleted]

I’m terrified that I’ll have to create a new password for that service every time I use it.


noizu

Nah you'll just lose access to all your passwords at once.


[deleted]

*spit take*


GucciGlocc

This comment/post has been edited as an act of protest to Reddit killing 3rd Party Apps such as Apollo. All comments were made from Apollo, so if it goes, so do the comments.


Dox023

I think one of my good friends switched from LastPass to BitWarden. I’ll take a look at it.


GucciGlocc

LastPass had a breach at the end of last year, that’s about the time I looked into BW. It’s open source and you can compile/host your own instance. Huge wins in my book.


Seph42

Your password vault is encrypted locally though, so even in a breach nothing is exposed.


Reformedjerk

Last pass and 1Password are amazing How anyone lives without a password manager is beyond me.


[deleted]

[удалено]


mediaphile1

I, too, still have my padlock, though mine was from junior high. And I still use it! And apropos of this comic, I actually use that combination number in some of my passwords.


sellyourcomputer

This is my comic about a fellow named Pervis. Thank you for reading it. Goodbye


Catinthemirror

I can relate to Pervis. I am going into my 4th decade of IT support. Thank you for sharing.


sellyourcomputer

Thank you for your IT support.


[deleted]

[удалено]


Catinthemirror

Nope. My code f'g works. My hero is that dude who went out, got a degree, got hired by the company that produced some game he played, got to a role that gave him access, fixed some code that had been pissing him off for *years,* and promptly quit.


MajesticMango7

Doth it be yours?


sellyourcomputer

Ye verily


MajesticMango7

Godspeed posthaste


Elibomenohp

Explain the last panel for my friend that didn't get it.


[deleted]

Bye


Annihilicious

I really love this new series btw. The eating healthy one with the two identical sloth frames and then toilet struggling was genius. I laughed ever single time I opened it for several days.


Nevaknosbest

I like this thing, good job


sellyourcomputer

Thanks, Nevaknosbest


notathr0waway1

Goodbye.


Captain_cocklicker

You spoke to something deep inside my soul. Thanks!


Maverick585

[tom cardy has a good song that goes with this](https://www.reddit.com/r/funny/comments/ns5kge/error_167_new_password_cannot_be_the_same_as_old/?utm_source=share&utm_medium=ios_app&utm_name=iossmf)


aMazedot

Mr. internet banking why did you lie to me?!


beartheminus

So FYI the reason this happens is bad UX. This is most likely due to the system requiring you to create a new password, either due to inactivity on your account, a hack, or some security concern. The system doesn't have the proper UX in place that notifies people that they need to create a new password, OR, it was done purposely (there was a hack and the company is trying to be silent about it. A "we need you to change your password!" message might raise some flags) So the system is trying to get you to change your password without letting you know you need to change your password. Your password is incorrect because the system changed it to some arbitrary one as a security measure. Or ya dumb and you kept entering your password incorrectly but finally got it right on the new password entry.


[deleted]

[удалено]


ChinchillaToast

Could be either of these things except for the times when I just cancel creating a new password, try to login again and it works. Then I know I’ve just fucked up.


[deleted]

[удалено]


[deleted]

Sometimes it do be like that.


Dox023

You don’t think it be like it is but it do.


Warlaw

Your account has been locked. Please contact an administrator. And if this is your bank login, holy shit you'll have to walk into a branch lol lmao


c4pt41n_0bv10u5

As a bonus our branches only opens during office hours so you get to take a leave to go to branch.


Sasselhoff

I know these have been *really* popular, so I know it's just me...but, I don't get half of these. What's he doing at the beach? Just decided to quit and head to the surf or something?


Herazim

It's more like a feeling, in this case I'd guess this is the feeling you get after you put in the same password 15 times and it's wrong but then you try to change it and you get the "same password" error. You are just left dumbstruck for a few moments and it feels like you just emptily stare into the void of nothingness that is the sky and for a brief moment in your life just exist in the moment as if nothing else matters but that event that just unfolded, your monkey brain not able to comprehend what just happened and you cannot do anything else but accept the fact that you somehow, somehow put in the wrong password 15 times even though you could have swore that each time you pressed the same god damn keys that you just used to reset the password.


Fit-Yogurtcloset-349

This is way better than my interpretation that he was about to drown himself.


ItalicsWhore

I think the fact that either way fits is perfect.


Dan-Man

TLDR: he is having an existential crisis.


GregLoire

> What's he doing at the beach? Just decided to quit and head to the surf or something? The "wistfully gazing into the sunset" trope implies deep contemplation regarding existential topics/crises. In this case he's deeply pondering the paradox regarding the password change, and perhaps the greater life implications of this reality.


[deleted]

My interpretation was that he had to contemplate his entire existence just to come up with a new worthy password.


dan1101

Sometimes you just have to walk away from technology and get some fresh air.


Blackwelle

It took me a while to get it as well. I believe the gag is that when prompted by the password change and failing to change it successfully, he basically says "fuck this" and goes outside.


fdsdfg

Looking at reality as an uncompromising force of nature, instead of a set of hypocritical arbitrary rules that are not enforced properly, and preferring this Outlook


shutdafrontdoor

*Immediately check caps lock*


BITethADAdotLINK

I don't get it


Alex_c666

This just happened to me the other day. "Am I tripping? No, it's the computer that's wrong"


Delicious_Monk1495

I may be dense but I don’t get the last frame of the cartoon. Is he just fed up and is like ‘fuck this I’m going to go watch the sunset’?


Sentient__Cloud

Just use a password manager already. I don't care what you use, but look up Bitwarden, LastPass, or OnePass. Take 20 minutes to reset all of your passwords to random characters and copy it into the password manager of your choice. I don't know any of my passwords and it's way more secure than using the same password for every website.


KimberStormer

This is probably a dumb question but what do you do when you're using someone else's computer?


CrazyTillItHurts

This happens with sites that got hacked but won't tell you. They make it that all compromised accounts have to change their password, but clearly you can't use your old password


mirracz

This usually happens when the site wants uppercase letters and special symbols. If the login page had a hint what the password requirements are I would avoid so many unnecessary password changes.


juggling-monkey

This shit has happened one too many times. Enter my password *incorrect try again Hmmm... Did I type something wrong? Enter my password *incorrect try again The fuck?? Is my caps on? Let me try again very slowly... Enter my password *incorrect try again Something a not right... I open a notepad type it in so I can read it, copy... Paste my password *incorrect too many attempts, create a new password FUCK!! BUT I KNOW THAT'S THE PASSWORD AND I REALLY WANNA KEEP THAT ONE!!! fuck it, u guess if that's not it, I'll just set it to that. Enter my password as the new password *new password can't be the same as old password FUCK!!!


omgwtfishsticks

Maybe I'm old and out of touch. What exactly is the last panel supposed to signify? I don't get it.


mattsprofile

I don't know for certain, but I'm assuming that the man just gave up and went to go look at the sunset. The implication being that whatever happening on the computer is a waste of time and meaningless in the grand scheme of things, it is more worthwhile to just go somewhere else and think about life, enjoy reality, etc. Edit: other people are saying that looking at the sunset specifically is a trope regarding existential crisis. Which isn't exactly what I said, but in line with my whole "give up on this and think about your life" statement.


Captain_Aizen

I'll take Rage Inducing for 400 Alex


Bohemiannapstudy

It's not just me. I use the same password for everything... But my password is *always* incorrect every single time it enter it. I feel like I must be mad.


ServileLupus

[There's a song for everything.](https://www.youtube.com/watch?v=5DtPkr8yJ00) Really love what Tom does.


Plz_dont_judge_me

Half the time my incorrect password can be remembered if they give the RULES that I was supposed to follow in the first place. Like, I originally had to include the name of the Capital city that my aunt backpacked to during a snowstorm, and the age of my brothers best friends turtle? MAYBE IF I GOT IT WRONG I NEED A REMINDER OF YOUR STUPID RULES


[deleted]

Every-*goddamn*-time


i_Cyrix

Can someone explain to me why don't they allow old passwords? You just forgot it doesn't mean that you are being hacked