... Better let an application generate password for user's eyes only and force user to memorize it (or to write it down, at their own risk).
Let's see... my work account, two banks, several credit cards, two healthcare accounts (FSA AND HSA) as well as my health insurance, accounts for my kids in school (like paying for school lunches), ISP account, several streaming services, slashdot, reddit, and a number of other forums I participate in (and not me, but most people will have several social media accounts).... you get the idea. I'm supposed to remember all those completely random passwords?
Oh, and another pet peeve: changing passwords often - it does nothing for password guessing, all passwords with same randomness have same probability of being guessed. Changing passwords are meaningful only if old password is already compromised, but you never know when it exactly happened, so unless you are changing password after each session, it is almost completely useless.
Now that I can agree on - our company's policy is just damn annoying and often screws up our production work.
Yeah... I don't know anyone who writes it down on a post-it next to their computer, but we do have a 90 day policy, and my password strategy is not quite what the GP described, but it's not too far off, either. That's the stupidity of just not allowing us to create a really great pass-phrase that would take years to break. That's all on top of two-factor authentication (RSA SecureID) when not signing in from our internal network.
The stupidity is that on systems that have multiple users, we have a shared account that we use - it's actually assigned to a large number of systems; these are not user's desktops, but graphics productions systems that any number of operators might use. The problem is that the IT department implemented this password policy without asking any departments about the effects, and after 90 days we were blocked from this account because none of the operators had the authority to change it, and if they did they'd lock out everyone else who didn't know it - many offices, or even buildings away. Moreover, none of us get the email from that account - which doesn't even really have email, so nobody got a warning the password was expiring. So we do live TV, and people couldn't log into the systems that generate the on screen graphics. Of course now that login is an exception, but it points out a problem with IT blindly creating a policy without input from the people it's affecting.
The other stupid thing is that our MS Office accounts are tied to our logins, and we can authorize up to 5 boxes. There are at least 100 production boxes, and we can't license them by box. We do a lot of daily production data in spreadsheets because it's easy for the user and easy to use as a data source.
In any event, the more passwords humans are required to remember, and the more complicated they are required to be, the less secure we're going to make things as people do skirt the guidelines to make them as easy to remember as possible - or they write them down, or whatever.
Frankly, I don't see what's wrong with the scheme the GP described (although I would make it more complex). If someone has to brute force decrypt it, it will still take just as long. With the special characters in there, it's highly unlikely someone could guess it. It's true that once they got it once, they'd be able to guess it correctly later on, but the idea is to make it hard to get even once.
Since others mentioned Jameco and Digikey, I'll also offer Mouser as a source for electronics bits.
There are punishingly few components on Amazon worth the price and shipping time. If I ever buy electronics there, it's always part of a larger order and thrown in for shits and giggles rather than something I specifically need.
If you RTFA (yeah yeah...) you'd notice that this is not an indictment of transportation, but a sign that efforts to reduce emissions from power generation are succeeding. In other words, it's not that transportation emissions are unusually high, it's that other sources of emissions are on the decline.... so you can now unbunch your panties.
The article then laments that efforts to curb transportation emissions haven't gained much traction yet, and notes that higher fuel prices are the best chance to drive efficiency gains and adoption of alternatives. Boo hoo!
So you'd have no problems citing a source for that, then? A photo of an epipen showing an expiry date of 2021 or something?
Epinephrine degrades steadily with time and expired doses are not as effective as fresh ones. I've not been able to find anything to suggest a 5-year shelf life for an epipen anywhere, so if you'd be so kind...
Ibuprofen isn't quite the same thing. Most drugs absolutely lose potency over time, and in the case of common over-the-counter analgesics that's not a huge problem since, at worst, you'll be getting a slightly lower dose than the label indicates. No big deal.
But in some cases, like with adrenaline shots, a lower than needed dose could be fatal.
As with food, "expiration date" is usually another way of saying "sell by" date - it is not a magical date when the food becomes inedible, but there are legal requirements to not sell food that is old to eliminate the possibility that spoiled food is sold... completely different from the rationale behind putting expiration dates on medicines.
"Marriage is like a cage; one sees the birds outside desperate to get in, and those inside desperate to get out." -- Montaigne