Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dharfr/are-my-passwords-safe

A simple website to teach basics about using passwords
https://github.com/dharfr/are-my-passwords-safe

Last synced: about 2 hours ago
JSON representation

A simple website to teach basics about using passwords

Host: GitHub
URL: https://github.com/dharfr/are-my-passwords-safe
Owner: dharFr
Created: 2012-09-08T11:14:01.000Z (over 12 years ago)
Default Branch: master
Last Pushed: 2012-09-08T11:15:25.000Z (over 12 years ago)
Last Synced: 2024-11-09T16:05:10.848Z (about 2 months ago)
Language: JavaScript
Size: 156 KB
Stars: 0
Watchers: 3
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

Are My Passwords Safe ?
=======================

## Idea

What about building a simple website dedicated to teaching some basics about password good (and bad) practices.
Most developers already know how to manage theirs passwords, but the great majority of my "non-tech" friends and family don't really know what's secure or not.

I thought it could be useful to build a web-site to present passwords related good and bad practices. To me, it has to be interactive and fun as it present quite a boring topic. The Questions/Answers format seems appropriate as it is quick and easy yo use and allows user to see his progress and compare his score with friends.

### Mockups

https://moqups.com/dhar/dGRVSNzn

## Questions

First draft for the questions:

#### Q1 : How many of your passwords could be described by the following statements?

- A common word or phrase (ex: "password", "monkey", "love", "sunshine", "letmein", "iloveyou", "trustno1", etc.)
- An easy-guessable keyboard pattern (ex: "qwerty", "123456", "zxcvb", "654321", "123123", "qazwsx", etc.)
- A common name (ex: "john", "ashley", "superman", "michael", etc.)
- A simple variation or combination of the previous statements ("abc123", "pa$$w0rd", "456love", "@ndy111", etc.)

**Answers**

- All of them
- Only a few (1 or 2)
- Some of them (more than 2)
- Every single one

#### Q2 : Do you the same password over several services or web sites?

**Answers**

- On one or more e-mail accounts
- On one or more social networks (Facebook, Twitter, Google+, etc.)
- On one or more e-commerce sites On one or more others web sites
- Never use the same password

#### Q3 : Do you use complex passwords?

At least 6 characters; contains a mix of upper and lower case letters; includes numerals, special characters, and punctuation

**Answers**

- Always
- Often
- Sometimes
- Never

#### Q4 : How often do you change your passwords?

**Answers**

- Every 6 months or less
- Once a year
- Less often
- Never

## Score

TODO

## References

A few link I collected on the passwords topic. Some of these may be irrelevant to add in the project so a review will be necessary.

### Passwords good practices

- [Wikipedia - Password strength](http://en.wikipedia.org/wiki/Password_strength)
- [hitachi-id.com - Choosing Good Passwords](http://hitachi-id.com/password-manager/docs/choosing-good-passwords.html)
- [csoonline.com - How to Write Good Passwords](http://www.csoonline.com/article/220721/how-to-write-good-passwords)

### Weak passwords

- [mashable.com - 25 Worst Passwords of 2011](http://mashable.com/2011/11/17/worst-internet-passwords/)

### Links about password leaks

- [techcrunch.com - 6.5 Million LinkedIn Passwords Reportedly Leaked, LinkedIn Is “Looking Into” It](http://techcrunch.com/2012/06/06/6-5-million-linkedin-passwords-reportedly-leaked-linkedin-is-looking-into-it/)
- [lifehacker.com - Last.fm Passwords Also Leaked; Change Yours Now](http://lifehacker.com/5916642/lastfm-passwords-also-leaked-change-yours-now)
- [arstechnica.com - Why passwords have never been weaker—and crackers have never been stronger](http://arstechnica.com/security/2012/08/passwords-under-assault/)