THREAD: Password Keeps Expiring
  1. 12-14-2016, 10:46 PM
    #1
    spookcentral's Avatar
    spookcentral
    Save Point
    spookcentral's Avatar
    spookcentral
    Save Point
    3
    Posts
    10
    Reputation
    Sep 2014
    NextGenUpdate
    I am constantly being told that my password is "old" has been expired, and that I need to set a new one. Just right now, it forced me to change my password because it says that my password was "91 days old", as if three months is really a long time. Hell, my bank doesn't even ask me to change my password so damn much. This has happened to me dozens of times over the past two years that I've been a member of the site. How can I turn off this annoying "feature" and keep the same password for however long *I* want?
  2. 12-15-2016, 04:42 AM
    #2
    Kronos's Avatar
    Kronos
    Time is Ticking
    Kronos's Avatar
    Kronos
    Time is Ticking
    2,881
    Posts
    26,460
    Reputation
    Mar 2013
    NextGenUpdate
    Originally Posted by spookcentral View Post
    I am constantly being told that my password is "old" has been expired, and that I need to set a new one. Just right now, it forced me to change my password because it says that my password was "91 days old", as if three months is really a long time. Hell, my bank doesn't even ask me to change my password so damn much. This has happened to me dozens of times over the past two years that I've been a member of the site. How can I turn off this annoying "feature" and keep the same password for however long *I* want?
    Dont think you can, that feature is there for your protection and for ours.
  3. 12-15-2016, 05:39 AM
    #3
    Sparrow's Avatar
    Sparrow
    Majestic
    Sparrow's Avatar
    Sparrow
    Majestic
    355
    Posts
    3,582
    Reputation
    Nov 2016
    NextGenUpdate
    Originally Posted by spookcentral View Post
    I am constantly being told that my password is "old" has been expired, and that I need to set a new one. Just right now, it forced me to change my password because it says that my password was "91 days old", as if three months is really a long time. Hell, my bank doesn't even ask me to change my password so damn much. This has happened to me dozens of times over the past two years that I've been a member of the site. How can I turn off this annoying "feature" and keep the same password for however long *I* want?
    It's because they don't require a 'secure' password (uppercase, lowercase, number, symbol) so have an ageing policy instead. Also you don't have to call up after 3 failed password attempts, unlike most banks makes your account vulnerable to hacks.

    At work our's is a secure password & a timeout of 2 weeks

    Originally Posted by Saint Kronos View Post
    Dont think you can, that feature is there for your protection and for ours.
    Should have a password option to require a secure one with a longer age on it, even though I think 3 months is ideal, obviously other's don't.
  4. 12-17-2016, 01:08 AM
    #4
    spookcentral's Avatar
    spookcentral
    Save Point
    spookcentral's Avatar
    spookcentral
    Save Point
    3
    Posts
    10
    Reputation
    Sep 2014
    NextGenUpdate
    Originally Posted by Sparrow View Post
    Should have a password option to require a secure one with a longer age on it, even though I think 3 months is ideal, obviously other's don't.
    That would be a good compromise instead of the frequent expirations.
  5. 12-17-2016, 08:15 AM
    #5
    Ali's Avatar
    Ali
    Canít trickshot me!
    Ali's Avatar
    Ali
    Canít trickshot me!
    360
    Posts
    7,994
    Reputation
    Jun 2013
    NextGenUpdate
    Originally Posted by spookcentral View Post
    I am constantly being told that my password is "old" has been expired, and that I need to set a new one. Just right now, it forced me to change my password because it says that my password was "91 days old", as if three months is really a long time. Hell, my bank doesn't even ask me to change my password so damn much. This has happened to me dozens of times over the past two years that I've been a member of the site. How can I turn off this annoying "feature" and keep the same password for however long *I* want?
    Well there are people out there who try to leak the databases for forums, it's happened here before. So the fact they make you change your password frequently is a good thing, it prevents those people from accessing your account, well not 100% but it does do its job. I guess this is how I see it atleast.
  6. 12-17-2016, 03:38 PM
    #6
    5,246
    Posts
    277,676
    Reputation
    Jan 2020
    NextGenUpdate
    Originally Posted by spookcentral View Post
    I am constantly being told that my password is "old" has been expired, and that I need to set a new one. Just right now, it forced me to change my password because it says that my password was "91 days old", as if three months is really a long time. Hell, my bank doesn't even ask me to change my password so damn much. This has happened to me dozens of times over the past two years that I've been a member of the site. How can I turn off this annoying "feature" and keep the same password for however long *I* want?
    Not sure why it would be doing that. For the usergroup you're in, you're only required to change your password every 500 days.
  7. 12-18-2016, 01:55 PM
    #7
    Madison Taylor's Avatar
    Madison Taylor
    Dark Knight
    Madison Taylor's Avatar
    Madison Taylor
    Dark Knight
    4,399
    Posts
    18,322
    Reputation
    Apr 2009
    NextGenUpdate
    I was gonna make a thread about this too, it's very excessive if it is intentional. Forcing users to change their password evert 3 months is most likely more detrimental to security anyway as people will undoubtedly just resort to using the same password with an incrementing number or something rather than choose a unique strong password each time as they just won't remember it. I honestly don't see the point anyway, if your database has passwords hashed + salted and encrypted then even if it is leaked it's not like it's any use to people anyway.
  8. 12-18-2016, 07:48 PM
    #8
    Frosty's Avatar
    Frosty
    Olaf The Snowman
    Frosty's Avatar
    Frosty
    Olaf The Snowman
    8,674
    Posts
    65,411
    Reputation
    Dec 2011
    NextGenUpdate
    Originally Posted by Madison Taylor View Post
    I was gonna make a thread about this too, it's very excessive if it is intentional. Forcing users to change their password evert 3 months is most likely more detrimental to security anyway as people will undoubtedly just resort to using the same password with an incrementing number or something rather than choose a unique strong password each time as they just won't remember it. I honestly don't see the point anyway, if your database has passwords hashed + salted and encrypted then even if it is leaked it's not like it's any use to people anyway.
    Someone could make a random string of digits and letters for their pw, and save it to their Lastpass, or write it down.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •