Bitcoin Forum

Happy New Year Everyone!

I've been thinking for a while now that it's probably time to change my password.  Then, when I logged back in I see 2FA is now a thing so I thought I'd make the suggestion that others consider changing their passwords.  Besides, how many times do you have your bank or email account (or work for that matter) "suggesting" you change your password?  Quite often I would imagine.

Set your password to ten to twelve characters - but not ones that are only found on your phone (otherwise you'll be stuck logging on on you cell phone)  - source a random password generator app and don't use words or phone numbers/birthdays.  (which app do you use?)

As to New Years resolutions - I tend not to make any but am keen to hear what yours are.  In the past, I've tried reading all those books that have been gifted to me over the years.  Read some of them, but not all.  Anyone make weight loss resolutions or quite drugs/smoking/vaping/drinking and fail miserably?

What about home renovations?  Or getting in contact with long lost family members or old flames?

Although password are suppose to be something that shouldn’t be easy to crack down easily by others i will say it is not something I will advice one to over do. First red flag is to rely on password generators online rather do a self password and use characters, uppercase and small letters and numbers. Do not use specialized keyboards to create or write down passwords. But overall I think the problem of worrying too much about passwords to the forum has reduce to me, the 2FA is added advantage and also the staking of one’s bitcoin address is another. A little tip if your account is permanently logged in try to sometimes log out to log in so that you can remember the password one or more time. But be advice that the best place to save passwords is offline in a secure place

No, although it's recommended to frequently change passwords but i still  push how long and strong password combination is the most important.
As for the 2fa, the secret key should be saved to a safe place just like how important password and private key/seed is.

If you're considering changing your Btalk password be warned that everytime you do this BPIP can see that and show the whole world the exact date and time you changed your password lol. Just FYI. I think a lot of people probably are not aware of this fact so that is also the main reason why I am bringing that up.

I dislike it. If I use a strong password, secure it well, I don't have need to change it after 3 months or 6 months.

Banks and their policies to force users to change password like this, can cause their users to set up a new password which is nearly similar to a previous password, with minor change. This practice does not help to secure any account.

GUIDE] How to Create a Strong/Secure Password (https://bitcointalk.org/index.php?topic=5132378.0)
Are your passwords in the green? (https://www.hivesystems.io/blog/are-your-passwords-in-the-green)

I've never changed my password since joining, I thought it was strong enough and only in my brain, it's been 6 years. Plus I'm counting on recovering an account with a staked address, the security of my account depends on how I guard the privatekey. If you think I'm bad, don't do like me.

 I see no reason why one should be changing password regularly but it it recommended to use a more complex characters combination to generate your passwords rather than changing password oftenly and changing password frequently can also pose a distrust because it will look as if the account have been compromised and since the password changes is visible to all in bpip.org (https://bpip.org) it will be difficult to trust such a user, moreover the introduction of 2FA is also an additional security to enhance a safe account security measure.

I don't know about you but I feel messing or always changing my password can lead to me actually forgetting the password except if I wrote it down somewhere and that's what I don't really like too except of course for the seed phrase of my wallet  ;D don't want to be messing around with that. But to be frank there's is no reason for this thread because your password change should be something that's confidencial to you and not the whole community to know about or are you indirectly telling us something else 🤔🤔

No, changing your password regularly is not a recommended practice by many security experts.  In fact, it can make things less secure.  People who change passwords a lot sometimes use simpler ones or reuse passwords across sites and  both bad ideas.  Best to use strong passwords.  And only change when there's a reason, like a breach somewhere else you used the same password.  No reason to regularly change just because.


Actually, I've never received an email from my email provider or bank advising me to change my password. Unless, of course, it was a preventative measure implemented following a security breach.

I found this on the Google Help pages:
https://support.google.com/accounts/answer/98564?hl=en

You can do this anytime you think your account was compromised or if you log in to a public PC changing your password is any time when its necessary not just for an occasion.

Be sure that you can always remember the password that you've used and you alone know that password

You can do that anytime it doesn't have to be on New Year, people might think that you're doing this because of New Year do so when you feel that you want to see them and that's anytime.

Yes, I can see on that website that I have "woken up" a number of times which is more that I lurk and only come on from time to time to make a comment or ask a question, so no big deal - there will probably be more slumbers from time to time.

I've also been reading about staking an address, but opinions are mixed and it looks to be very inconclusive given the anecdotal evidence that staked addresses are sold with accounts.  Some users suspect an account has changed hands when nothing more than a password has been changed.  If there was a way to show that my account had 2FA enabled, then that would go a long way to silencing any doubters that all I'm intending to do is change my password to beef-up my security at the end of the year.

Can I ask those who have said they don't even write their passwords down on a scrap of paper they keep safely at home why they are relying on just their memories for a jumble of a dozen characters?

Gmail never suggests me to change password, unless I change device or give some app permission for email account and you know we get that notification, "Not you? change your password."

With banks there have been few occurances, but I only change if it's mandatory  ;D


Yep, password manager ftw, and I use keepass. Used to use lastpass, after it's frequent hacks, I moved.


I don't either cause if you make one, there is chance to fail. If you don't there is no chance fail, amirite?


Home renovation, yep. Depends on money flow, may the crypto gods be with us!

I would like to share how i securely generate passwords and store it, but i don't set passwords regularly like after some months.
first I add much different characters i find as i can on keyboard then make around 14-16 character long, adding some words and numbers to it and write that onto a paper and store in somewhat difficult to access.. place.
or for low security and quick password generating i use free password generator online,: i use this site: https://www.avast.com/en-in/random-password-generator

I will make resolution of getting out of my comfort zone and socialize and make friends, because i am too shy.

I have registered with this password for almost a year now, and my password is strong enough. So I don't want to change my password this new year.
Because password security protects your privacy completely. The private key will be safe if you keep it in a safe place.
Thanks anyway, Happy New Year in advance.

It is scary the way some people take the security of this forum as if it is their bank account or crypto wallet, and I must say that I have never witnessed such before in any of the many forums I had participated in about 2 decades. The frequent change of password might be good but I believe is on what has to do with money or vital information per se, not even when we are already blessed with 2FA as an additional security measure.

For this, I don't see myself changing this soon but rely on the 2FA in 2024.

It is for forum account security, not forum security if I understand to context correctly.

If you consider your account here is important, you will have to secure it strongly enough.

Because you can use your account for working, getting BTC here.
Your account, if compromised, will be possibly sold, used to scam other forum members.

Nothing is bad if a forum member is serious about an account security.

There is no need of regularly changing your account password if you can get a solid and strong password combination with any kind of characters including numbers, except your password is already leak or compromised then you can change password as you may want it but currently there is no need because 2FA is already available there to help protect your account security.
There are some people who aren't good with their password and kept changing it making their account history looks very messed up, sometimes it creates room for suspicion upon account and if it happens that you dropped or increased in your post quality then there is every room for investigation.

Change and update the password on your account with the beginning of the new year? Why not? Yes, man! This is a damn good idea. It would be advisable to do this more often, and not once a year (I believe many do this even less often), but even so, this is a good trend.

Is it time for hashtag #New Year = New Password? :)

How about making it longer and more complex every time you change your password?

I have not encountered a situation when my email got hacked or I lost my email access. That is something, I feel is an achievement for, knowing how important this forum means to me, I would agree with your point about changing the password of forum password.


Thanks for reminding me what kind of length is needed to set a password. However, this is not something I was not aware of as I have been in this forum for some time now.


Good for you that you have a resolution as for me I do not care about such resolution. As I have been breaking those resolutions that were made by me  ;D

Happy New Year to everyone around here, anyone who is reading this reply of mine, I would say one thing you were amazing and you are still. Enjoy this day and do not come up here to write a reply ;D

I’m not sure if this is sarcasm or you’re being serious but I don’t think it’s necessary to change your password every year. If you have a strong password and you are sure that it has not been compromised, there’s no reason to create a new one.

Let’s say you change your password twice every year, the more you do so, it’s likely you will find yourself confusing old passwords with the current one.

Firstly there is no need to even change the passwords every time just like you have warned, also forgetting the password or confusing it means the person actually relied on his brain to save the password. This is actually a bad way to save any password or any thing use else. Set a very strong password and then store it offline and every new year you can actually recycle what you use to store the password like washers or papers to avoid over written/destruction of them. This will be Better than actually changing the password. The only time when one need to change password is when you feel it is compromised or something like that

You don't even change the password yourself, you just woke up every year to see the rays of the sun.

https://www.talkimg.com/images/2024/01/01/I0wQo.jpeg
https://www.talkimg.com/images/2024/01/01/I0AfT.jpeg

Bpip: https://bpip.org/Profile?id=964385

When I saw this thread title, I thought OP is suggesting everyone change their password. I don't think there is any need for it if your password is already secure and complex one.
Yes, we can configure the 2fa with our existing passwords to make it more secure.

Happy New Year to everyone. I am against the saying that you make new resolutions at the beginning of the year. Your plan for life should not be rigid or dependent on specific years. Live your life and make your plans linked to short goals and set a general goal for every 5 or 10 years. Change your password periodically whenever possible or might be discovered.

If you change your password for the New Year to keep your account safe, you may want to do so. But I don't plan on changing my account password because I claim the password I currently use is strong enough. And the password that I currently use for my account has been used for many years on all other social media so I will remember enough and have the password stuck in my brain. And I definitely don't plan to change this private password in the future, but if I have to change it, I will definitely change it just for the security of my account. But if you are in doubt about your account password, it is up to you to change it for your safety.

Cheers
Happy New year 2024

There is nothing wrong with changing your password for bitcointalk account, especially if your old password was weak or used in multiple websites.
You should always use unique password for each website, and save them all in open source password manager, but always remember to make backup.
For additional security I would also enable 2FA in account settings.

Random password is much better than numbers and birthday dates, but you can also use passphrases as combination of multtiple words.

I don't know about you but I think the new year resolution is something that is actually set up or done by someone to see to it that he accomplished or one on his weak part in his life and that's why many people have seen that the new year resolution is a something of must but their is one major thing though and thats the fact of if actually they can actually meet up and see to it that their oaths or should say resolution is achieved.

As for the password change I don't believe in changing ma password frequently be it any case because you might actually end up getting confused on the particular password used.

This is how it is when you don't read insightfully. I simply don't know the reason for this reply because certainly I am not in charge of forum security nor would 2FA and the password of users protect the entire forum by themselves. So, you may want to fill the gap.

We lay priority on things differently as we are not the same, what you read was the way I see it, you might see it the other way, either way, life goes on. But trying to query my own disposition cannot work here. The information on this forum is not a private one, it is public, and this is not some sort of protecting my vital documents or assets. Is that the way you protect all your social media accounts and forums? However, it is a welcome development for me, after all, it is another layer of protection. I was only referring to how scary people in the forum are taking it in case you didn't understand.

Isn't the Google captcha meant to thwart someone stealing your account.
I think only the people doing good business together here would need to worry about that.

 Passwords generators are a big no for me because its from a  third party and I can't guarantee my full privacy and security when its constantly used. It also leads you to store your passwords either electronically, or on a book offline, these two I don't buy its idea cos of the possibility of my passwords going into the wrong hands at my absence and I'll be rendered useless.
Almost all my passwords follows two conventions, one convention for my bank accounts, and another for my online accounts,  these no one knows except me. I don't write it anywhere and the only reason I can  lose them is if I lose my mind. I can comfortably hand over all my assets to anyone I choose by just telling the person one of my passwords and my passwords convention and that's final. I don't like stress, so I keep my things simple and private

If that's the case, I can imagine the password convention you use can be deduced pretty easy.  Just a few leaked passwords following your style could probably give it away.  Computers are generally good at noticing patterns like that and if you use the same kind of password convention on different sites, odds are some of those sites will have data breaches eventually.  

Using identical password convention everywhere is risky business and I don't recommend it, as it could put your accounts at risk.  If a couple get hacked, the rest might be vulnerable too.


And, possibly, very insecure.

Pretty good post, pretty good idea.
I've changed my password in November, I'm good.
I tend to change at random times, not necessarily at New Year's.

And yes, I recommend long password with random characters.
My password manager, Bitwarden, contains a great password generator, making a great combination. I recommend people consider using such a tool, it's much better than using same password or one with same "base" or "rule".

Happy New Year!

I stopped doing new year resolutions and I treat New Year as another change of the year, if there is a need to change something I will do it right away, not waiting for a particular day to arrive before I change something, I call this procrastination if you delay taking action on something that needs action, there's no need to change my password, I have not changed my password ever since and there's no need as I have made it secured and besides we have the 2FA, its hard to create a complicated password and try to remember it.