By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
For a long time now I've explained to my local users that using a social security number as a password is not a good idea. It's our corporate headquarters policy to do so. Recently, I was asked by the user that I've had changing our passwords to non-social security passwords why we are not using the social security numbers as passwords. I've tried explaining it to them as simple as possible how hackers attack a network and possibilities of disgruntled employees. Can you give any expert advice of your own as to why this is not a good idea?
You are on target. They are also easy to crack - just download the newest LophtCrack tool from @stake and test it. Number only passwords are discovered very quickly.