Issue is resolved but thread is interesting
First of all, I hammered out a mutually satisfactory solution with one or more of the moderators. I get to stop bitching and they'll let me go back to my old password.
This thread was enlightening though. Many commenters assumed, reasonably no doubt, that I always access the Internet through the same device. Not true in my case for a whole host of reasons. I end up on different computers in different regions of the world so passwords and the like need to be committed to organic memory -- one which is getting increasingly crowded.
Some staunchly argued the merits of encryption as security against misappropriation. No doubt it's a formidable barrier; but, I seem to recall that most leaks happen when authorized people, being mere humans like me, screw up or get pissed off.
Some quite reasonably argued that regularly changing your password is good computer hygiene. No doubt that's true but isn't there a very real risk that passwords will become trivial after one runs through the obvious anchors in ones life like SSN, CC numbers, addresses, number of parking tickets and event dates?
One argument that occurred to me is that I've heard that an excellent way to crack encryption is to load the database with known values. So changing a password frequently could build up sufficient data points to realize the key. I'll leave that for the cryptologists among you to elaborate.
The most compelling argument I heard (perhaps because it agrees with my position, but let me flatter myself) was made by petteyg359. petteyg359 addressed the human side of the equation when he argued:
Quote:
Originally Posted by
petteyg359
...If the password has not been compromised, requiring new passwords can do nothing but degrade security, since you're removing valid good passwords from the available pool. Unless you're assuming that there's somebody running a permanent brute force on your account, and you're just hoping you'll change to something they've already tried. I have NEVER seen a good argument for forced changing of passwords.
In any event, the kindness of the WHT moderators and the thoughtfulness of the comments in this thread are indeed compelling arguments to return.
Regards,
Aza D. Oberman