this post was submitted on 08 Aug 2024
817 points (98.8% liked)

Comic Strips

12539 readers
3253 users here now

Comic Strips is a community for those who love comic stories.

The rules are simple:

Web of links

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] CorruptedArk@lemm.ee 63 points 3 months ago (2 children)

Someone tell Bones that you can lie on security questions

[–] OpenStars@discuss.online 35 points 3 months ago

Bones would never lie - he's a good boy, yes he is:-).

[–] Ashyr@sh.itjust.works 29 points 3 months ago (1 children)

Can and absolutely do. Pet is my standard security question and it's just a standardized password I use only on that field.

[–] tyler@programming.dev 15 points 3 months ago (2 children)

You should most likely generate a unique one for each website, but I doubt any attacker is going to go to the trouble of capturing that once and trying it again as a security answer elsewhere.

[–] FuglyDuck@lemmy.world 10 points 3 months ago (1 children)

I use a password manager…. Generate a random string at 36 characters and then back off to whatever they’ll accept.

The number of idiots forcing less than 24 characters for things like that's… way too damn high. (Probably preaching to the choir here but there was an issue with windows screwing with the encryption or something “requiring” 24 instead of 12.)

[–] Frog@lemmy.ca 1 points 3 months ago (2 children)

Sometimes banks ask me my answer to security questions. This ever happen to you?

[–] tyler@programming.dev 2 points 3 months ago

Yep and I just give them the long random string. They don’t care.

[–] FuglyDuck@lemmy.world 1 points 3 months ago (1 children)

You… go into a bank?

For what?!

I could always show them my id or something. You know, the same one I showed to get the account.

[–] Frog@lemmy.ca 1 points 3 months ago

I've been asked my answer for security questions on the phone.

[–] dubyakay@lemmy.ca 9 points 3 months ago

The bad part is of course when it's not just the password leaking but the security questions and answers as well.