RE: Password creating Theories

["dave kleiman" <dave () isecureu com>]

Steve,

That would be http://www.securityfocus.com/archive/88/312263 you are
referring to.....

Additionally, you might want to check out Mark Burnett's new book being
released soon:
Perfect Passwords: Selection, Protection, Authentication
http://www.syngress.com/catalog/?pid=3420


Dave


          -----Original Message-----
          From: Steve.Cummings () barclayscapital com
          [mailto:Steve.Cummings () barclayscapital com]
          Sent: Tuesday, November 15, 2005 13:02
          To: jfountain () rbinc com; security-basics () securityfocus com
          Subject: Re: Password creating Theories

          Passphrases are a good way with keys

          There was a discussion a while ago regarding this that I
          instigated regarding using alt characters in the password
          ie at start or beginning

          Number for and a few against were the results


          -----Original Message-----
          From: Jennifer Fountain <jfountain () rbinc com>
          To: security-basics () securityfocus com
          <security-basics () securityfocus com>
          Sent: Fri Nov 11 21:27:25 2005
          Subject: Password creating Theories

          I am currently coming up with a new policy to create
          root/admin passwords for windows and linux boxes and would
          like to know your thoughts on the methods you use to
          create them.  Thanks for any input!


          Kind Regards,

          Jennifer Fountain
          Systems Administrator/Security
          R&B Distribution
          3400 E Walnut Street
          Colmar, PA  18915


          ***********************************************************
          **********************
          The information transmitted is intended only for the
          person or entity to which it is addressed and may contain
          confidential and/or privileged material.  Any review,
          retransmission, dissemination or other use of, or taking
          of any action in reliance upon, this information by
          persons or entities other than the intended recipient is
          prohibited. If you received this in error, please contact
          the sender and delete the material from any computer





          -----------------------------------------------------------
          -------------
          For more information about Barclays Capital, please visit
          our web site at http://www.barcap.com.


          Internet communications are not secure and therefore the
          Barclays Group does not accept legal responsibility for
          the contents of this message.  Although the Barclays Group
          operates anti-virus programmes, it does not accept
          responsibility for any damage whatsoever that is caused by
          viruses being passed.  Any views or opinions presented are
          solely those of the author and do not necessarily
          represent those of the Barclays Group.  Replies to this
          email may be monitored by the Barclays Group for
          operational or business reasons.

          -----------------------------------------------------------
          -------------