Keeping Passwords Hard to Predict
Discover effective methods to keep passwords difficult to predict by eliminating default credentials, monitoring password dumps for reused passwords, and enforcing strong password policies. This lesson helps you strengthen your system's defenses against common password-based attacks.
Passwords are meant to be secrets shared between a user and the server they’re authenticating to. If attackers can predict those passwords, they can bypass this defense. Here are a couple of steps we can take to keep it difficult for an attacker to predict a password.
Never use default passwords
We covered this back in Default Passwords, but it’s worth mentioning again. Never use default passwords.
Monitor password dumps for password reuse
It’s ...