Do you use the same password for different online poker rooms?
Only logged-in members can vote!
→ Click here to create a Mob account which gives you access to our forum and all our free bankrolls (no deposit bonuses) → Log in to existing account!
Joined: Apr '09
Location: Portugal
Age: 44 (M)
Posts: 4827
This seems a silly question, but this weekend I noticed I don’t used to change the password of my poker accounts, because I prefer to safe that data and enter automatically when opening them. But is it safe to do this? I think I never had problems with any room where I have had money, but keeping the password for too long can give someone who tries to rob me a better chance to really do it one day. And this turns worst if I happen to have the same password in different poker rooms. In my case, I have three or four different passwords, but I have about 15 poker rooms where I am registered, so this means I am repeating some of them and, worst, I am not changing them since I created the account. Would like to know your opinion about this.
Joined: Jan '11
Location: United States
Age: 60 (M)
Posts: 3361
I use a computer to do most of my work and based on feedback from our I.T. department it is best to change your password every 90 days. It is also best to include upper and lower case letters with symbols and numbers included. My problem is remembering all the passwords and I don't like documentinmg them so..................
Joined: Mar '09
Location: Greece
Age: 47 (F)
Posts: 14136
Never good to use the same passwords anywhere. With a single shot that someone has at you then he/she can get lots more that he actually was going for. Its best to have different passwords for every site and if you dont want to write them down in order to remember them try to memorize as many as you can and use the recovery form when you forget one.
I should be using different passwords for different sites, except I would find it difficult to remember 10-12 passwords, especially on sites I don't frequent often. Throw in changing every password every 90 days and it could really become a clusterfuck.
Joined: May '09
Location: India
Age: 37 (M)
Posts: 4873
my password is same at almost all sites after black friday i dont keep much funds on the pokersites, most of it is on moneybookers. so if some guy can crack my password at pokersites, he can keep the money
Joined: Feb '11
Location: Canada
Age: 39 (M)
Posts: 1660
Defintely change them, alternatively you could save all your passwords in an encrypted file and then refer to it if you forget. Then if anyone does get access to your encrypted file they'd have to go to some serious hardship to get it decrypted
Never use the same password anywhere. Not even on sites that do not seem important to you.
A lot of these sites are not careful enough, and allow administrators to see these passwords (not by design, but simply because they have not bothered to properly configure/secure their software).
Even simply sticking a post-it note with all the passwords on you monitor, for sites that you don't care about, is better than using the same password on all of them...
Try finding some password management software, that takes care of all of this for you...
No..hell no!! I use different passord almost for each poker rooms where I have an account, and I use different passwords for other sites, too...like BankrollMob or my gmail account...
Posted by ladyred: Oh dear i use the same pass word for all my sites , never had a problem .
That just means that you trust dozens of people you don't know, and can get away with it, to not steal from you. Most people are honest enough, so it might take some time before you get burnt...
Joined: Mar '09
Location: Greece
Age: 47 (F)
Posts: 14136
It only takes a bad employee to take your details and try it somewhere else. Its much easier than you believe someone stealing you data. You dont need to be a hacker. An angry employee gets sacked and before he leaves he just downloads players details. And then you run A simpler version
Joined: Nov '11
Location: Poland
Age: 37 (M)
Posts: 1088
Posted by marqis: That just means that you trust dozens of people you don't know, and can get away with it, to not steal from you. Most people are honest enough, so it might take some time before you get burnt...
??? Why you think, that storage passwords in your computer has something with trusting? Who may steal my password? People from PokerStars? The password, that you enter, when you register is hashed and in this form is transferred to the server. So PokerStars crew will see only a lot of $%!#&!^ etc. The password, good created is almost unable to crack... It takes a hundreds milion(!) years to crack password. More special chars = better safe For more details, check Google for TLS, SSL, etc
Joined: Feb '11
Location: United Kingdom
Age: 62 (M)
Posts: 14
you would be surprised how easy it is to get passwords from a pc or laptop. As someone who works in the security industry, it is so easy it would scare you. Whats funny is a well known computer magazine gave out the web site to get the software to do it
Posted by marqis: That just means that you trust dozens of people you don't know, and can get away with it, to not steal from you. Most people are honest enough, so it might take some time before you get burnt...
??? Why you think, that storage passwords in your computer has something with trusting? Who may steal my password? People from PokerStars? The password, that you enter, when you register is hashed and in this form is transferred to the server. So PokerStars crew will see only a lot of $%!#&!^ etc. The password, good created is almost unable to crack... It takes a hundreds milion(!) years to crack password. More special chars = better safe For more details, check Google for TLS, SSL, etc
On a lot of sites, anyone with administrative access, can find out what your password is, if: - the site logs all requests. The request that contains your password, may well be encrypted (https/ssl), which means it can't be intercepted. However as soon as the request reaches the server, it is decrypted, so the webserver can process it. This includes your password! If the sites logs these requests (which is a reasonable thing to do, to be able to debug the site whenever problems occur), this logging will contain your username and password in clear text. The site's developers must detect, and remove these passwords before the logging is written (this is often overlooked, usually developers are not even aware of these security issues, or don't care)... - the site does not store the hashed password, but in cleartext, or encrypted (in asp.net there is actually a setting passwordFormat="Clear", so anyone with acces to the database, can just read them...) - if a site is able to resend you your password, when you've forgotten it, rather than resetting the password (i.e. you get a new one), you password was not stored hashed on the server.
Like I said, you should assume a lot of people can see your passwords...
Joined: Feb '11
Location: Canada
Age: 39 (M)
Posts: 1660
Posted by Corby_Sniper: you would be surprised how easy it is to get passwords from a pc or laptop. As someone who works in the security industry, it is so easy it would scare you. Whats funny is a well known computer magazine gave out the web site to get the software to do it
Seriously? I try to keep things updated and use firewalls/antivirus. I'm far from an expert though. I don't like the idea of it being that simple, could you share the program or more importantly is there something that can be done to prevent this program from working?
I use different passord almost for each 
