An interesting article today: Simple things are complicated: making a show password option. It referenced Government Design Principles: Make things open: it makes things better which I thought was an interesting and sensible government policy…
So I found this article which said:
$ sudo -u postgres psql
postgres=> alter user postgres password 'apassword'; postgres=> create user your-user createdb createuser password 'passwd'; postgres=> create database your-db-name owner your-user; postgres=> \q
Note: to enable password logins for the ‘postgres’ admin account, edit: /etc/postgresql/9.4/main/pg_hba.conf and after this line:
local all postgres peer
Add this line:
local all postgres md5
ChallengeResponseAuthentication no PasswordAuthentication no UsePAM no
Then restart the SSH server:
service sshd restart
To change a user’s Kerberos password (on charity):
sudo kadmin -p root -w `cat /home/jj5/kadmin_root_pass` -q 'cpw eguser'
Where ‘eguser’ is the username of the account being changed.
Found an interesting article: About Secure Password Hashing.
Needed to set a MySQL root password. Found this article which suggested a way when no password is yet configured:
mysqladmin -u root password NEWPASSWORD
And a way when a password is already configured:
mysqladmin -u root -p'oldpassword' password newpass
Note: you use ‘mysqladmin’ not ‘mysql’.
I read Password Primer today:
- Use at least 8-10 characters.
- Interchange upper and lower case letters with numbers and symbols.
- Consider a “Passphrase” like “Every good band deserves fans”: “!eGbAdfns2”
- Change your password every 6 to 8 months and immediately if you believe it’s been compromised.
- NEVER share your password with anyone you don’t trust – some would say never share your password PERIOD.
- Don’t write your password(s) on sticky notes and then post them to your monitor!
- Avoid using the same passwords for all of your accounts.
- Never send your password to someone in an e-mail.
- Don’t use the “Remember Password” option in browsers or websites
- NEVER make your login and your password the same thing.
Learned about the Portable PHP password hashing framework today.