1. Home
  2. Creating a Strong Password

Creating a Strong Password

If you wish to create a strong password on BookAnyone, or on ANY site, there’s a few guidelines you should follow.

These guidelines are especially important for banking or financial websites, as well as email accounts.

Use long passwords

The first big factor with passwords is password length. This prevents hackers from trying millions and millions of combinations of letters and numbers (known as brute-forcing) to find your password. Each character you add to your password makes it dramatically harder to bruteforce.

That means that something a password that APPEARS secure like “8no2zjK” is actually WAY less secure than something like “duckLikes2fruitPUNCH”.

Ideally, your password should be at least 12 characters, and every character you remove from that number makes it dramatically less secure.

You will also notice that something like “duckLikes2fruitPUNCH” is much easier to remember than random numbers and letters, which leads us to our next point about passwords.

Use Symbols, Capitalization, and Numbers in Random Places

Inserting numbers, symbols, and capitalization, especially in random areas of the password, makes it FAR more secure.

Ideally, your password should, somewhere in the middle, should contain one or more of the following symbols: !@#$%^&*()-_

If possible, you should also have random capital letters (meaning, not necessarily at the start of the word) within your password. Including a few numbers helps as well

Do NOT use JUST numbers, and do NOT just use letters. A good password has a healthy combination of numbers, lower and upper-case letters, and symbols.

Avoid Common Words used in Passwords

The other way people crack passwords is by using wordlists. Wordlists are a method in which people guess combinations of common words (from the dictionary, or from a commonly used password list) in order to crack passwords.

You should NEVER, for example, put the word “password” anywhere in your password.

Avoid passwords like “123456”, “111111”, “qwerty” at all costs. These passwords are very likely to be compromised.

If you are using ANY words in your password, it’s a good idea to misspell things, or add characters in the middle of words

Distance your Identity from your passwords

It’s important that you avoid using your birthday, your street address, or anything tied to your identity when forming your passwords. This makes it easy for someone who knows even trivial information about you to guess your passwords.

Instead, invent something memorable that has nothing to do with you, such as something like “EinsteinAte5BranMuffins”, or similar (but of course, add some capitalization and symbols in random places!).

Don’t reuse the same passwords for multiple sites

Every site you have an account on should have a different password. The reason for this is if one site happens to be compromised due to poor security, all your accounts on the other sites are also vulnerable.

As humans, this can be challenging and overwelming, but there’s a few tricks to make this easier.

One approach is to use a password manager, such as lastpass (cloud-based) or keepass (locally-stored, open source).

Another approach is to create a global “secure password” that you use on secure sites, and at the end or in the middle of it, add the name of the site you are logging into.

So your email password could be “duckLikes2emailfruiT#PUNCH”, your bank account password could be “duckLikes2bankfruiT#PUNCH”, and your BookAnyone password could be “duckLikes2bookfruiT#PUNCH”.

Using this system, you have secure, unique passwords for every site you use.

Updated on November 2, 2019

Was this article helpful?