this post was submitted on 08 Aug 2024
825 points (98.8% liked)

Comic Strips

12550 readers
3807 users here now

Comic Strips is a community for those who love comic stories.

The rules are simple:

Web of links

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 27 points 3 months ago (2 children)

Bones. I'm sorry but you weren't my first dog. My first dog will forever be the answer when it comes to security questions. It's convenient. But you're really my favorite. I love you bones.

[–] [email protected] 6 points 3 months ago

Plot twist: Bones' official full name is actually "James Bones", but he doesn't know.

[–] [email protected] 15 points 3 months ago* (last edited 3 months ago)

Don't use real answers. "Security" questions have the same 'authority' as passwords (they can be used to change your password), but are often not treated with the same level of care as actual passwords.

Meaning, SQ are often easier for a hacker to figure out and exploit. In that event, SQs are actually worse than passwords, because they're "unchangeable" (well, the real answer is). So if an SQ answer gets compromised, you're SOL

The best option is to use a password manager, and randomly generate passwords and SQ answers (i use 1Password, but there are other good options)


Edit: oh and, if you use real answers, then those are more likely to be publicly searchable on Facebook or socially engineered (like a "which dog are you" quiz)