{"id":33385,"date":"2021-08-19T08:03:00","date_gmt":"2021-08-19T12:03:00","guid":{"rendered":"https:\/\/tcn.tidbits.com\/?p=8660"},"modified":"2021-09-01T15:46:59","modified_gmt":"2021-09-01T19:46:59","slug":"how-to-take-the-annoyance-out-of-your-key-passwords-and-passcodes","status":"publish","type":"post","link":"https:\/\/www.computeradvantage.us\/v3\/how-to-take-the-annoyance-out-of-your-key-passwords-and-passcodes\/","title":{"rendered":"How to Take the Annoyance Out of Your Key Passwords and Passcodes"},"content":{"rendered":"

We constantly say, \u201cUse a password manager!\u201d for good reason. Password managers make it easy to generate, store, and enter strong passwords. You don\u2019t have to decide whether or not your password is strong or weak, remember it, and type it accurately every time you log in to a website. Seriously, just get 1Password<\/a> or LastPass<\/a>, or you could use Apple\u2019s iCloud Keychain<\/a>.<\/p>\n

But what about those passwords you have to enter regularly, like your Mac\u2019s login password, your Apple ID password, and the master password for your password manager? And the passcodes for your iPhone, iPad, and Apple Watch? Plus, it may also be helpful to be able to remember and type passwords for a few services that require you to enter the password into an app instead of a Web browser. (Of course, you can copy and paste the password from your password manager, but that\u2019s fussy if you have to do it frequently.)<\/p>\n

For such passcodes and passwords, you\u2019ll want to come up with options that are strong, memorable, and easily entered. Here\u2019s what we recommend for most people. (If you\u2019re a target of a nation-state or regularly deal in highly confidential government or corporate information, you\u2019ll need an even higher level of security.)<\/p>\n

Passcodes<\/h3>\n

It\u2019s essential that your iPhone, iPad, and Apple Watch have a passcode that can\u2019t easily be guessed. Once someone can get into an iPhone or iPad, they could read all your email, look at all your photos, make purchases via Apple Pay, and impersonate you in conversations with others. And yet, many people use worthless passcodes like 111111 or 123456. Don\u2019t do that! Also, don\u2019t worry about making a passcode that\u2019s easy to type\u2014with Touch ID, Face ID, and Apple Watch unlocking, you don\u2019t have to type your passcode all that frequently.<\/p>\n

Since we\u2019re talking about physical objects that can\u2019t be accessed remotely and are most likely to be compromised by someone who knows you personally, the key is to think about what six digits you can remember but that even people who know you well couldn\u2019t guess.<\/p>\n

For instance, you might think of using 081995<\/b> if you were born in August 1995, but your birthdate is both widely known and easily discovered. A better pattern would be the dates of the month associated with the birthdays of your best friend from high school, your favorite cousin, and your late grandmother\u2014132408<\/b> if they were born on May 13th, July 24th, and November 8th. No one will ever guess that.<\/p>\n

You get the idea. Think of dates associated with people or events important to you but that even close friends or family members wouldn\u2019t necessarily know. Then combine those days, months, or years in a way that makes sense to you. You\u2019ll end up with a strong passcode that you\u2019ll never forget.<\/p>\n

One last point. Given the level to which data syncs between your iPhone, iPad, and Apple Watch, we don\u2019t see any significant benefit in creating different passcodes for each. Come up with a secure passcode and use it on all three.<\/p>\n

Mac Login Passwords<\/h3>\n

Much like an iPhone\u2019s passcode, the primary vulnerability for your Mac\u2019s login password is someone who has physical access. You don\u2019t have to worry about remote brute force attacks (as long as you don\u2019t have remote access enabled in System Preferences > Sharing) or password files being stolen, suggesting that the password doesn\u2019t need to be insanely strong and equivalently hard to type.<\/p>\n

That\u2019s especially true for an M1-based Mac or Intel-based Mac with a T2 security chip<\/a>, and even more so if you have enabled FileVault<\/a> (which we recommend). But if it\u2019s an older Intel-based Mac without a T2 chip, it\u2019s conceivable that a thief could image the drive and use brute force attacks to find the password. A stronger password might make sense for such an older Mac.<\/p>\n

Considering all this, we recommend coming up with a password that\u2019s easy to type, memorable, and difficult to guess for even those who know you well. It doesn\u2019t have to be strong enough to protect against serious cracking software unless you live in a Spy-vs.-Spy world. Consider taking a few words from a song lyric or movie quote you\u2019ll never forget and jamming them together, such as \u201cettubrute<\/a>\u201d or \u201cgoestoeleven<\/a>.\u201d<\/p>\n

If you unlock your Mac and apps using an Apple Watch or Touch ID most of the time, you can make the login password a bit stronger without the annoyance of having to type it so frequently.<\/p>\n

Apple ID and Password Manager Passwords<\/h3>\n

When it comes to your Apple ID password, the master password for your password manager, and other passwords to online services you need to type, attacks will take place either remotely or be directed against a stolen password file. Plus, your Apple ID password and master password to your password manager literally hold the keys to your kingdom, so they must be extremely strong and resistant to automated cracking. It\u2019s also essential that you won\u2019t forget them and that you be able to enter them\u2014on both a Mac keyboard and an iPhone keyboard\u2014reasonably easily. What to do?<\/p>\n

One possible solution is to create a long passphrase of random but easily remembered words, as suggested in the classic xkcd cartoon<\/a>. Current advice suggests that a passphrase of five words\u2014with at least 32 characters\u2014is now necessary to resist modern cracking methods.<\/p>\n

Passphrases are highly secure, but they can be tedious to type and may not work well for an Apple ID password. Apple requires that Apple ID passwords<\/a> have upper and lowercase letters and include at least one number. But don\u2019t make it longer than 32 characters; some have reported problems with longer passwords.<\/p>\n

For a compromise approach, consider a password built using the following rules:<\/p>\n