Quote:A small follow up, is there any general rule for shortest passwords one should pick? I mean, one can pick anything from 8 to 63 characters or something, but is there some recommended minimum? Does it really matter much? This applies to both the wireless net itself and the admin account on the router (which you actually have to type in when you connect and don't want 63 random characters to type). Yes I know I can have Windows or the browser remember it, but don't want that. Is 10 character passwords just stupid (yes, they are somewhat random with both numbers and small and large letters although actually memorable).If those devices are directly accessible to the internet, then you want strong passwords. If the device does not prevent a brute force attack, for example, by locking out the account for 10 minutes after 3 failed sign on attempts, then you want very, very strong passwords.
For routers and switches I typically use all 63 characters randomly generated and store them in a password safe (freeware ones like http://passwordsafe.sourceforge.net/ are fine). For your wireless access point, if the password merely grants access to the wireless network using a strong password is fine, but if it allows for the configuration of the WAP and is accessible to the internet, use an appropriately stronger one. A pass phrase is the easiest to remember, and after typing it enough you will remember it. So for example I would start with something like; "dead men tell no tales" then make it stronger by introducing special characters and some upper case letters, such as "d3Ad_mEn-te77_0_tA1es"
Test it here...
Microsoft Password Checker
For many places I manage I use a Radius Server.