By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
For a long time now I've explained to my local users that using a social security number as a password is not a good idea. It's our corporate headquarters policy to do so. Recently, I was asked by the user that I've had changing our passwords to non-social security passwords why we are not using the social security numbers as passwords. I've tried explaining it to them as simple as possible how hackers attack a network and possibilities of disgruntled employees. Can you give any expert advice of your own as to why this is not a good idea?
You are on target. They are also easy to crack - just download the newest LophtCrack tool from @stake and test it. Number only passwords are discovered very quickly.