Regex for password with atlease One uppercase,one lowercase,one non-alphabet either number or special character with min length 8 and max length 15 | The ASP.NET Forums
108760 Points
52736 Points(7481754) You best be using at least 9 character passwords with lower and upper case letters and numbers and special characters and umlauts and gerunds and dingos
Turn on javascript (or enable it for Fark) for a better user experience.
If you can read this, either the style sheet didn't load or you have an older browser that doesn't support
style sheets. Try clearing your browser cache and refreshing the page.
/go/7481754
Enable JavaScript for Fark in order to vote for entries.
That's OK, I'm behind seven proxies.
I put a glottal click in all my passwords.
I believe 12345 meets all those criteria.
The US DOT recently changed its discussion board.
The old system didn't require a password.
You typed a name and that's how your post appeared.
The questions were like "My agency recently installed some W29-307B symbolic dingo crossing signs.
How long should we maintain the supplementary `Dingo Crossing' plate?"
They hardly needed much security.Somebody official noticed the government-run system did not meet government security standards.
The result was a new requirement for prior approval of posting and use of a 12 character password with circles and arrows and a paragraph on the back of each one explaining how the character was secure against Canadian sign thieves.
And a comparatively dead board.
A dingo ate my babby.
1-2-3-4-5-ding&O
ArkAngelYou forgot the gerund:
1-2-3-4-5-ding&Oing
apart from my html fail.
Good thing all my passwords are 'crackthisshiatbiatches'
That's great and all but most websites don't let you guess the password that many times a day, let alone per second.
jaylectricityThese machines are for offline cracking.
Some sysadmins who ought to be put to death slowly and painfully allow hackers to steal their password databases.
Some don't even bother making the databases hard to crack.It's easy to design a system where the password database doesn't live on the web server.
We had that when I was in college in the 1980s (minus the "web" part).
The hashed version of your password lived in an encrypted file on a disk in a locked closet, attached to a secured server.
That server talked to the outside world through an authentication protocol.
I'm not sure if it even allowed remote logins.You to workstation: Hi, I'm Drew.Workstation to auth server: Hey, this guy says he's Drew, send me a blob of data.Auth server to workstation: Here's your blob.Workstation to you: Password, please.You to workstation: 12345Workstation to auth server: Here's your blob decrypted using what this 'Drew' says is his password and re-encrypted with the key I found inside.Auth server to workstation: It's a match!
He's cool.I've skimmed over technical details of what gets encrypted and decrypted.
See Kerberos authentication system.
The important part is, the auth server is designed to assume client machines and the network are both insecure.
So if they have access to the physical storage of passwords, don't they have access to anything they want anyway?
I can't get into my most backwater forum account if I enter the password wrong 5 times in a couple minutes. What system lets you guess 350 billion times per second without penalty?
So if they have access to the physical storage of passwords, don't they have access to anything they want anyway?Depends on the circumstances.Some of these crackers are looking to exploit people who reuse passwords.
Maybe they don't care about LinkedIn, but figure LinkedIn users have access to the secret Federal Reserve bboard.In the old Kerberos system I described if you get to the database and the master key (which requires peeking inside process memory on a secure server) you win.
The network is set up to trust the authentication server.Some web servers are misconfigured so you can do HTTP GET /etc/passwd (or equivalent), giving you read access to hashed passwords, but not more valuable data.
Yes and no. Think about it like this.
They hack Fark and get the passwords, in hashed format.
Then they crack the file (offline).
Now they have your email address and a password.
Sure, that password is the one you use for Fark, but how much do you want to bet that 50% of the Fark passwords also work for a banking site or Amazon (where they have your credit card), or Facebook (where they get tons of other information), etc.
On the vast majority of networks, the combination of user ID and password is what they want.
Who gives a fark about your accounting spreadsheets with next quarter's revenue projections?
If they have a list of three hundred user IDs and passwords from a white-collar company, that's probably a few hundred user IDs and passwords for checking accounts, 401(k) accounts, credit card accounts, etc.
This is an offline attack.
They get the file with hashed passwords and crack them offline.
No web necessary.
But this is easier to remember1-2-3-4-5-ding&Oing&Ob&Oing&O
My fault for skimming the article.Still, unless your site is really poorly configured, getting the hash file would likely involve someone on the inside or some other way to get physical access. And once you have physical access to the system, all bets are off anyway.
That's why I don't use any online services that require a password.
I have a cat that died 13 years ago. Nobody on earth besides me, my daughter and my wife can remember that beast's name. Not even my own mother knows it.But the 3 of us will never forget it, as long as we live. So that's our default password for accounts we share.
My passwords are nothing but dingos anyway.
Every password I use online is the same EXCEPT for any site attached to my money (bank, Steam account, etc), attached to my medical data, or my email - every one of those is unique.
So, grab my facebook password if you want...all it will get you access to are things like my Pandora account, and my AMC MovieWatcher account.
Congratulations, you're ahead of 95% of the internet.
Your passwords. I shall eat them!
JFC Morpheus, your password was OMGPINKPONEYS1 ???
Even with his fancy cracking array, which is pretty freaking sweet I might add. Unfortunately for him where I work we've been using that XKCD suggestion for awhile, I usually make passwords based on a few things on my desk, like "Knifedrivemagnet"according to GRC's password haystack there's 2.91 x 10^27 possible passwords for that size and character set. Assuming 350billion guesses a second it would take 263,824,214 years to guess that. I think he might have better success mining bitcoins.
Keepass is all I use.. If I sign up to a new site I just add a new entry and it auto generates a buttfark insane password for me and I'm g2g.
I've switched to an image based password.
It compares desktop backgrounds.
Good luck brute forcing the 3MB anigif.
ampoliros: unless your site is really poorly configuredThere are a lot of poorly configured sites, or sites using poorly configured hosting providers.We should treat these sites like people who refuse vaccinations for the core plague-causing diseases, or people who leave guns or unlocked cars around to be stolen.
Oh, well then I'll start requiring users to submit passwords that include an O, 0, &, and &O.
Just so you can't figure it out when written down.
And then, we'll require Egyptian Hieroglyphs, for good measure.
imokwiththis.jpg
LOL...my wife is a paranoid BS in CS, so she refuses to run Java, scripts and a bunch of other shiat I can never recall, and she uses a ~20 digit password for everything...that she won't type...instead copy pasta from a text file.Of course, she can only actually view about one page in three she clicks on, and can only change web pages about every 30 seconds, but nobody can see her baby pics.*rolls eyes*
Unless this machine can also magically intercept the text message and find the approval code that google, facebook, etc. sends me any time my account is accessed from non-approved machines, then I think I'll be OK subby.
This is why I use sentences for my more...important passwords, and semisecure "words" for things like fark.
I try to make my passwords as difficult as possible usually by randomly hitting keys, like this -- alsdkfjoweklrj,;cvjzxiocuvfklenwr,.uaer.
they are so complex and yet so impossible to remember, hence I never go back to that website again.
What about Obscene Gerunds?/obscure?
Phew. My luggage is secure
As a fellow (pending.
1 more paper) BS in CS, and de facto family tech guru, she's right.Basic rule:Extensions:Adblock - turn off adsFlashblock - keep flash from running until you say soTurn off JavaNo(t)Script(s) - Turn off Javascript selectively.Of course, NoScript breaks the internet, so I usually go with the first 3 until they get a virus, and then I give them NoScript, and a basic whitelist for most of their sites./Currently running without NoScript.
It really does break the internet.
TOONCES1999/never forget//never forgive
That's why my Fark password isn't particularly difficult.
I'd rather the goblins think they've scored big when the truth is they only stole my collection of farts in mason jars. I'd miss it but not that much.
Yeah, make your nine character passwords, I will stick with seven characters.
Everyone will fail trying to guess my password when they try nine characters.My hotmail account was so old (before I stopped using it) that it had a four character password.
362436?OnlyIfShes53!Or similar. I figured out lyrics as passwords in college. If you want to use my NeXT account from 1994, the password is SoICanDieEasy, as I was listening to a lot of Zeppelin at the time.
Most of America still thinks that the best way to deter password thieves is to make their password hard to guess.When was the last time you saw a McDonald's employee trying to do something without a computer?
Hackers are not sitting there with a pen and paper jotting down possible password.
I particularly enjoyed pineapple salsa fart #4, 1998.
It was a good year.
I told her about ratting her out on Fark and she said to mention that she doesn't keep any passwords or account numbers on her laptop's HD, either. Instead, she keeps them on an encrypted thumb drive that she sticks in when she needs it. Oh, and she never uses the "remember me" option with websites, empties the trash and dumps cookies when she logs off, etc.
Personally, I am more concerned with a $5 wrench than this thing.
Displayed 50 of 64 comments
Enable JavaScript for Fark in order to vote for entries.
This thread is archived, and closed to new comments.
Advertisement
In Other Media
Stories from our partner sites:
You need to create an account to submit links or post comments.
Click here to submit a link.United States
United Kingdom
Account: How To Change Your Account Password
FatCow allows you to change your password at any time. You can either change your password once you have logged in, or by creating a password reset email.
Relevant Articles:
How to Reset Your Account Password
Go to the .
Click Forgot Username or Password?
Type in your
Click Get New Password. A password reset email is sent to you.
Click on the Password Reset Link within the email.
Use the screen that appears to setup your new password (see ).
Minimum Password Requirements
Very Secure
6 Total Characters1 Number0 Special Characters1 Uppercase Letter1 Lowercase Letter
6 Total Characters1 Number1 Special Character1 Uppercase Letter1 Lowercase Letter
6 Total Characters2 Numbers1 Special Character1 Uppercase Letter1 Lowercase Letter
8 Total Characters2 Numbers2 Special Characters1 Uppercase Letter1 Lowercase Letter
Additional Requirements:
When changing your account password, the new password must meet the Strong or Very Secure minimum requirements.
45 maximum total characters allowed.
Must be different than your account username.
When changing your account password, the new password cannot match the last three passwords used on the account.
Your browser must allow cookies on FatCow's website (this is already enabled by default).
How To Change Your Account Password
Log in to your .
Go to Change Password.
Type in a New Password.
Confirm your New Password.
Click Change Password.
Password FAQs
What Is A Special Character?
A special character is described as a punctuation symbol or other non-alpha-numeric character. For example:
! Exclamation Mark
@ Commercial At
# Number Sign
$ Dollar Sign
% Percent Sign
^ Circumflex Accent
& Ampersand
* Asterisk
? Question Mark
_ Underscore
/ Forward Slash
& Less-Than Sign
& Greater-Than Sign
- Hyphen, Minus Sign
= Equals Sign
+ Plus Sign
( Left Parenthesis
) Right Parenthesis
] Right Square Bracket
{ Left Curly Bracket
} Right Curly Bracket
; Semi-Colon
| Vertical Line, Vertical Bar
\ Back Slash
" Quotation Mark
' Apostraphe
How Can I Create A Secure Password?
are popular ways for hackers to gain access to your account. Here are additional recommendations to help make your password even more secure:
Use a longer password. Longer passwords are generally more secure than shorter passwords.
Mix, match, and replace letters for numbers or special characters (such as using "@" for "a").
Avoid commonly used passwords and password variations (such as "password12!" or "admin123!").
Avoid using passwords that match well-known information about yourself (such as your last name).
Make your password memorable so that you do not have to save it into your browser. Anyone with direct access to your computer can locate your saved passwords.
Important: We also recommend that you create a secure password for your administrative email address.
How Can I Make My Secure Password Easier To Remember?
Recording your password anywhere (such as writing it down on a piece of paper, typing it into a text file on your computer, or saving it to your computer browser) can increase the risk of your password becoming compromised. Creating a memorable password can help increase its security because you will not need to record it anywhere. Here are some ideas you can use to make your secure password more memorable:
Consider using an entire phrase for your password (example: "TheChickenCame-1st")
Consider trading out regular letters for special characters (example: "Th33ggC@m3F1rst")
Consider logging in to your
regularly.
How Do I Change My Password If I Can't Log In?
You can trigger a
from the log in screen. If you are experiencing any issues receiving the password reset email or are otherwise unable to log in, please
Why Am I Constantly Having To Reset A New Password?
If you are constantly forced to change your password each time that you log in, please .
Why Am I Unable To Log In To My Account?
Most likely, you may be using incorrect login credentials. Double-check to make sure you are using the correct user name (or domain name) and password, and see if your capslock is turned on by accident.
Important: More than six failed login attempts within five minutes will lock your account for three hours. Please
to have your account unlocked.
Didn't Receive Password Reset Email?
If you are having difficulty receiving the Password Reset Email, please review the following suggestions:
Double-check to make sure you are using the correct spelling of the user name (or domain name)
Ensure caps lock is turned off
Check to see if it was received in your Spam/Junk folder.
If you have any business associates who administer the account, be sure to check with them to see if they have received the email.
If you've tried these steps and are still having trouble logging in, contact us
Important: More than six failed login attempts within five minutes will lock your account for three hours. Please
to have your account unlocked.
Forgot Your Username Or Domain Name?
To acquire or change the password of an account, you must provide either the Username or the Domain name of the account. If you are unsure of what the Username (or Domain) is for the account, contact the account owner for assistance.
If you are the administrator for the account please determine the type of account you are requesting information for.
I Am Requesting Access/Information For:
A Business Account:
Please send a written request to ownership@ and include each of the following forms of identification:
Business license
Certificate of Incorporation
A 501(c)(3) letter from the IRS
Any other government-issued documentation of business ownership.
Updated Email address to be contacted at.
If you've tried these steps and are still having trouble logging in, contact us.
A Personal Account:
Please send a written request to ownership@ and include each of the following forms of identification:
government-issued driver's license or identification card showing the customer’s name and address.
Updated Email address to be contacted at.
If you've tried these steps and are still having trouble logging in, contact us.
Call Support
888.278.9780
Existing Customer ToolsPassword must be 8-16 characters, with at least 1 digit, 1 lowercase and 1 uppercase letter i tried all.....?
I tried all passwords with big letter small letter !&#$%&/()=?*...... can somone pl give a example of password pls ?
6 following
13 answers
Report Abuse
Are you sure you want to delete this answer?
Sorry, something has gone wrong.
Trending Now
Best Answer:&
UraDickHead4sure
Source(s):
& 3 years ago
Thumbs down
& just now
Report Abuse
Your password must be 8 - 16 characters, and include at least one lowercase letter, one uppercase letter, and a number.
& 2 years ago
Thumbs down
& just now
Report Abuse
Upper case meaning with caps lock ON. lowercase: a b c d e upper case: A B C D E an example may be: pAssWOrd It has 3 uppercase and 5 lowecase!
& 5 months ago
Thumbs down
& just now
Report Abuse
Sexycarmel1987
& 4 months ago
Thumbs down
& just now
Report Abuse
Thissucks9
& 8 months ago
Thumbs down
& just now
Report Abuse
example password with 8 characters long consists of alphanumeric and symbols
& 2 years ago
Thumbs down
& just now
Report Abuse
PachuChay7
& 9 months ago
Thumbs down
& just now
Report Abuse
& 2 years ago
Thumbs down
& just now
Report Abuse
Source(s):
& 3 years ago
Thumbs down
& just now
Report Abuse
& 6 months ago
Thumbs down
& just now
Report Abuse
Add your answer
Password must be 8-16 characters, with at least 1 digit, 1 lowercase and 1 uppercase letter i tried all.....?
I tried all passwords with big letter small letter !&#$%&/()=?*...... can somone pl give a example of password pls ?
Add your answer
Report Abuse
I think this question violates the Community Guidelines
Chat or rant, adult content, spam, insulting other members,
I think this question violates the Terms of Service
Harm to minors, violence or threats, harassment or privacy invasion, impersonation or misrepresentation, fraud or phishing,
Additional Details
If you believe your intellectual property has been infringed and would like to file a complaint, please see our
Report Abuse
Report Abuse
I think this answer violates the Community Guidelines
Chat or rant, adult content, spam, insulting other members,
I think this answer violates the Terms of Service
Harm to minors, violence or threats, harassment or privacy invasion, impersonation or misrepresentation, fraud or phishing,
Additional Details
If you believe your intellectual property has been infringed and would like to file a complaint, please see our
Report Abuse
Report Abuse
I think this comment violates the Community Guidelines
Chat or rant, adult content, spam, insulting other members,
I think this comment violates the Terms of Service
Harm to minors, violence or threats, harassment or privacy invasion, impersonation or misrepresentation, fraud or phishing,
Additional Details
If you believe your intellectual property has been infringed and would like to file a complaint, please see our
Report Abuse
Ask a question
usually answered in minutes!
Existing questions
Tell us some more
Upload in Progress
Upload failed. Please upload a file larger than 100x100 pixels
We are experiencing some problems, please try again.
You can only upload files of type PNG, JPG, or JPEG.
You can only upload files of type 3GP, 3GPP, MP4, MOV, AVI, MPG, MPEG, or RM.
You can only upload photos smaller than 5 MB.
You can only upload videos smaller than 600MB.
You can only upload a photo (png, jpg, jpeg) or a video (3gp, 3gpp, mp4, mov, avi, mpg, mpeg, rm).
You can only upload a photo or a video.
Video should be smaller than &b&600mb/5 minutes&/b&
Photo should be smaller than &b&5mb&/b&
Video should be smaller than &b&600mb/5 minutes&/b&Photo should be smaller than &b&5mb&/b&
Related Questions
More questions
Answer Questions
10 answers
More questions
36 answers}