Valued Contributor

Re: Using a Strong Username and Password

Suggestions to revise username/password usage:

1. "Spectrum Password Guidelines

  • Must be between 8 and 16 characters long"

Please allow longer passwords. Reported to the support team months ago.

Please add two-factor authentication.


2. "Change your password every 30 to 60 days."

Changing password does nothing but encourage users to either choose passwords that are easy to remember or modify/repeatedly use the old ones, and thus does little towards addition to security.


3. "Keep your password secret and don’t write it down."

Secrecy and saving are mostly contradictory in this context. What you can remember for each and every website is unlikely to fulfil the criteria of a secure password. Consensus here is to use a password manager to generate long, random and varying passwords. So, you do save your passwords and, obviously, keep them secret.