eBay

im sorry but if the system knows the old password someone in eBay technical department can as well any system that won't allow reuse of passwords is not a safe system, my bank allows me to choose my password and can be what I want not what they want .

having to use numbers and or capitals is **bleep** I should be allowed to use my password seeing it is my password and use what I want 

You can complain all you like but if the system will not allow you to re-use an old password then you just have to change it.

I don't understand what the problem is....it took me all of a minute to change mine and my computer just asked if I want it to remember the new password and I ticked yes.

How hard is that?

you are wrong about eBay employees knowing your passwords.

they are encrypted, and cannot be seen by any human looking up your file.

only the system knows the key to "show" your password and allow you access.

if you are worried, close your account. Simple solution to your complaint.

Having to use a mix of characters makes your password more safe, as it is harder for a hacker to decipher.

not being allowed to use an old one again, is also safer.

contact eBay and they will confirm this for you. The employees cannot see your password.

By the way, I have written code so I know what I am talking about.

simple passwords can be cracked very easily using simple tools.

Snap.

It isn't hard the setup supercomputer algorithms, but it definitely helps when the user cooperates by not using their name, or 'password', or their birthday, or '1234'

I know this an older thread that was bought back to life. It's an important subject, so I thought I would add my 2 cents worth.

This link to my forum is a page I wrote recently which shows in simple terms how to form strong passwords. Follow the link to "GRC" in the opening post or at the bottom of the post for a much more indepth explanation.

http://alluvialgprospectors.proboards.com/thread/6821/passwords-protect

Additionally, a good password manager is invaluable. I use "Lastpass" which can be added to Google Chrome, Firefox, Internet Explorer & Safari via the add-ons page in those browsers.  Lastpass is one of the better password managers out there & I use it because I have nearly 30 saved passwords, each of which consists of between 14 & 20 characters with upper & lower case letters, numbers & symbols & it would be impossible for me to remember them without a password manager. 

When using Lastpass, the only password you have to remember is the one for Lastpass. I use a simple but strong one that consists of an easy to remember phrase with some changes that are also easy to remember. Here's an example. Your phrase could be "icanseearoundcorners". Then you could change it to make it very hard for anyone else to guess, like so...!canseEar0undcorn3rs.

---

@8mt31v wrote:

if a user isnt worried about security risk then it should be the account holders rightsr to use whatever password they want to use even if it is reusing an old password which may compromise their account it@s their choice, at the end of the day it they who will be at risk and no one else.

---

At face value, true, but the user who keeps the same hacked password would then expect eBay to fix any mess that might happen with unauthorised use of their account. That would affect eBay, too. Who then should bear the responsibility of any losses? The account holder, who refused to change a compromised password, or eBay?

also, the account holder in that scenario could go around blaming eBay even though they were advised to change. Not good for eBay, so ultimately not good for sellers if buyers cannot trust eBay anymore.

eBay had to prevent the use of compromised passwords, for us, and for eBay's reputation.