Some people believe that no password or passphrase should contain anything that can be found in a dictionary. Most people have their own opinions regarding the "ideal" password or passphrase and I always recommend aiming for the best practice of "easy to remember yet difficult to guess" and (especially) do what makes the most sense for the business. It sounds like you're on the right track. I wrote more about this topic in a recent SearchWindowsSecurity.com article: Windows password management myths.
Dig Deeper on Windows legacy operating systems
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.