Should I change my password every 30 days?
Published 21 December 2023
The short answer is no.
We all remember the days of being at work and every month when you login, you get prompted to change your password. (Well unless we are really young and we haven't been to work much).
This is outdated and counterproductive. Why?
Well, even if you didn't do this, you can bet that most people would keep broadly the same password, but add a new number to it. So, Monday1...Monday2...Monday3.....and so on. So, that's not really a new and strong password. So in other cases people would create a completely new password, and a lot of the time be calling the helpdesk a few days later because they forgot their new password. So, to remember it, they may have written it on a piece of paper stashed under their keyboard, or even worse ona post-it on their monitor (amazed) how often we still see this.
So, it's a pointless excercise. You should change your password if there is any chance that your account or password have been compormised. And then you select a strong password that you use only for one thing and that you can either remember or stroe safely.
Here's how to create a good password, using three random words.