lul w00t?

Who needs 100's of password?

Get a mailinator address and use for all your forum/site/commentary/FB/twitter accounts (basically anything non-e-commerce). So they get your address and password, what's the worst that would happen? Spam posted on fora in your name big deal.

99+% of sites can be relegated to disposable addresses and password. For the 2-3 that are commerce related, sign up to the enhanced security authentication schemes (verfied by vi$a and the like) and only use them in private sessions only when necessary. Alternatively, pay by bank transfer and keep all your data to yourself.

Job done.

Do people still use one address for all activities?

i know....

but an ideal world and real life are different things. as i say i have 100+ passwords to remember on a regular basis

i know i could do <standardpass><ref> where ref would be 'bethesda' or whatever but still a ball ache. obviously if they had locked down the SQL injections or however they got in then we wouldnt need to. i had the same password for everything for 15 years without issue. now its changed twice in a few months.

ahh bless. epeen wars...

from the guy without the bottle to even post his username.... afraid i will hack you and track you down to your parent's basement where i find you wanking over a linux mag dressed as someone from star trek?

as i say i visit many forums and have lots of places i need to log into. maybe i will just have to use the postfix method i talked about. the thing is i shouldnt need to.

yeah, but

what happens when sites change name, url etc? for instance i use virgin so i have a virgin email, but its ntlworld as the address. so i now have to remember all these little things. some sites have long names, and every time you refresh it wants you to sign in again. its just a ball ache but i know i should do something like your algorithm and i now have.

Re: so pissed off

"if you are like me you like to keep it simple. and use a master password. yes, i know its not a great idea but how the hell am i supposed to remember 100+ passwords on the move. i dont want to have to keep referencing some locker full of passwords, which would need a password anyway."

I keep about 2,000 passwords in my PINs file ( http://www.mirekw.com/ ), which is PW protected and 448 bit Blowfish encoded; I keep them in a True Crypt container when I travel. It has a password of about 32 alphanumeric characters. Security is worth its weight in gold. If I lose my USB stick I lose less sleep than most people.

Oh, and my passwords for internet fora and the like? Hopelessly complex and long. By the time you crack 'em I've changed 'em.

@ Kanded

As the AC you seem to be replying do, I dont understand what your point is here.

Yes, changing your passwords is a pain in the backside, but it is because the site that stored it did so badly, not (just) because LulzSec publicised the weakness.

So to protest hacking laws they hack the legislators.

Well yes, that's how civil disobedience works. If you want to protest about the ban on sitting at the back of a buss because of your skin color then moving to the back of the buss seams to be a good idea.

That's surely a well thought out plan with no negative repercussions.

Well no. There will be repercussions, but if people aren’t prepared to break the law we'd still be living under an absolute Monarchy, with no votes for women.

@John G Imrie

You're likening Lulzsec to Rosa Parks? Seriously?

For a start, and this is just a start, What Rosa Parks did was peaceful and didn't involve breaking into anything, threatening anyone or generally affecting anyone who wasn't involved in racist segregation. Lulzsec put innocent people's personal information onto the internet, break into and deface web sites and threaten the owners of said sites, all because they don't like being told that they're not allowed to hack/download for free/whatever else it is today.

It's not comparable. It's just not.

Comparability

"What Rosa Parks did was peaceful and didn't involve breaking into anything, threatening anyone or generally affecting anyone who wasn't involved in racist segregation."

We only have that view now because of what happened.

At the time people did indeed feel threatened, it was likened to breaking into the whites only area and the repercussions did indeed affect everyone - if if they were not directly involved in racist segregation.

More importantly, you appear to fail to grasp the concept of analogy.

Err

No, I fully understand the concept of an analogy, which is why I know comparing Lulzsec to protests for basic human rights is wholely inappropriate.

@Sindegra & previous AC

I still dont think you got the analogy right. Saying you did isnt the same as actually getting it.

The analogy is about what civil disobedience is. This is talking about protesting against a hacking law, by hacking legislators.

Its not about posting PII. Its not about infringing the rights of the private citizen to privacy.

Its not about justifying the takedown of Eve Online with a parallel to Rosa Parks. That is not the analogy in either its stated or implied forms. Its not about *ANY* other hacking attack being the same as Rosa Parks, its about demonstrating that the only way Civil Disobedience works is by breaking the laws you dont agree with.

Horseshit

Lulzsec is not a civil rights movement, it doesn't represent a mass of disaffected people. It's a handful anonymous hackers who like to vandalize stuff. Stop trying to make them out to be some political movement because they're not. In fact by vandalizing stuff they just demonstrate that the legal penalties for doing it probably require review.

take a deep breath

Who said LulzSec was a civil rights movement?

Are the voices in your head drowning out the words you are reading on the screen?

Bethesda Softworks,

for the record, are better known for the Elder Scrolls series, and the recent Fallout games.

Shiny buttons

Yeah, just think how much damage real hackers could have caused.