« Creating Shared Language and Shared Artifacts | Main | Facilitating Small Gatherings Using "The Braid" »

September 25, 2009


Feed You can follow this conversation by subscribing to the comment feed for this post.


I had an idea once to start a very famous community, ask for login info and use those usernames and passwords to gain on other sites, since most people use the same password for most sites. It sounds silly, but I think that's how Twitter was hacked some time back. Moral of the story, don't use same passwords on every site. Nice post btw Chris, I need to start creating pass myself.


I do know that in fact there are criminals that host "honey pot" websites with semi-legitimate content (games, files, music, porn,etc.) solely for the opportunity to collect passwords from unknowing users. So you need to be particularly careful the more fly-by-night the website is. I've not heard of any social media / mashup websites set up for this purpose, but I would not be surprised if there was.

Jingle Vannis

Thank you Chris for the detailed article on password best practices. I like to use roboform for the purpose and of course having a sophisticated randomized combination of different passwords will greatly reduce the chances of being compromised and thats where the roboform software comes in to manage the passwords.

Kalle Alm

Very nice post. I especially like the unique-per-site approach.

One thing you didn't mention was OpenID, which I with gurgling joy register with whenever the opportunity arises. I wish the world used OpenID so I could just have one gigantically monstrous password to rule my world with.

The comments to this entry are closed.

My Photo