Setting very long passwords in Windows 8

[alpha_3432]

For a very specific reason, I want to set very long passwords in one windows account. Currently I have a 65 letter password set in windows. I want to increase it to possibly 500 letter or more. However, it seems I cant set the password to any longer than 65 letters.

Is there a way I can change some field inside windows, such that I can set longer passwords.

I have already tried Change password policy settings - Windows Help

to no avail. I am using windows 8 that comes preinstalled with a laptop. Presumably windows 8 home.

I can go into why I want to set a very long password, but its not very pertinent to the discussion.

Thanks for your time.

 

[mcnumpty23]

what would be the point of a 500 character password?

for one it would take you a long while to type in

and thats assuming you dont make a single typo

and 2 its just as easily removed as a short password should some one want to get by it

 

[k1114]

I'm not sure but have you tried net user command in cmd?

 

[alpha_3432]

Thanks for replying, mcnumpty23 and k1114.

As I said, I have a specific reason for this, but that is not the goal of this thread. I want to make it very hard for somebody including me to access this account. Whoever wants to access the acount, will have access to the password. I am not worried about hacking or anything.

@k1114, I havent tried the net user command. I will try it and let you guys know. Thanks for pointing it out.

 

[basroil]

As I said, I have a specific reason for this, but that is not the goal of this thread. I want to make it very hard for somebody including me to access this account. Whoever wants to access the acount, will have access to the password. I am not worried about hacking or anything.

You do realize that passwords don't work that way right? Passwords are as much about complexity as length. For example, a 32 character long password with just numbers is only 106bits of entropy (in the hundreds of billions of years for a normal PC to crack by brute force) while a 32 character password using numbers, lower, UPPER, and specia| symol$ would be about 210bits (about a million, million, million years to brute force). If you want a quick refresh on it you can check out https://xkcd.com/936/

Now, your real issue isn't going to be securing your laptop the normal way, it's this: https://xkcd.com/538/

 

[mcnumpty23]

sorry but the actual point of this seems to have gone right over my head

why would you want to make it very hard for somebody including yourself to access the account?

if they have the password and can type fast it will take a couples of minutes maybe to do 500 characters

but i just cant understand the point of this

 

[alpha_3432]

As I said, I have a specific reason for this, but that is not the goal of this thread. I want to make it very hard for somebody including me to access this account. Whoever wants to access the acount, will have access to the password. I am not worried about hacking or anything.

You do realize that passwords don't work that way right? Passwords are as much about complexity as length. For example, a 32 character long password with just numbers is only 106bits of entropy (in the hundreds of billions of years for a normal PC to crack by brute force) while a 32 character password using numbers, lower, UPPER, and specia| symol$ would be about 210bits (about a million, million, million years to brute force). If you want a quick refresh on it you can check out https://xkcd.com/936/

Now, your real issue isn't going to be securing your laptop the normal way, it's this: https://xkcd.com/538/

I use lastpass to generate a complex unique password, for each case as you mentioned. I am assuming, if I can use a 500 alphabet password for windows, I also use a complex password as well.

 

[basroil]

I use lastpass to generate a complex unique password, for each case as you mentioned. I am assuming, if I can use a 500 alphabet password for windows, I also use a complex password as well.

You're doing yourself a disservice. Keep your passwords to 10 (random valid 7bit ascii)~ 20(alphnumeric) and they will be both uncrackable (by modern supercomputers) and easier to remember and type. Unless your goal is cryptography research (in which case you wouldn't even bother with Windows passwords), longer passwords are pointless.

Also note that for such a password to have any meaning, you will need to also put passwords on the disk (Bitlocker or other methods) and make sure you have all your files encrypted. But that won't protect you against someone that really wants to access your account directly... a $15 crowbar to the knee is usually all they will need. Your real concern should always be external access of personal information through websites that have your information.