nanog mailing list archives

Re: Password safes &c. (was: Dear Linkedin,)

From: Jay Ashworth <jra () baylink com>
Date: Sat, 9 Jun 2012 15:43:20 -0400 (EDT)

---- Original Message -----

From: "Lyndon Nerenberg" <lyndon () orthanc ca>

The only way to ensure your personal passwords are never compromised
is to kill yourself after destroying all physical copies of those
passwords. While ultimately secure, you won't be able to do your daily
online banking.


No, but on the positive side, the issue will be less pressing to you.

User-side authentication security is a multi-dimensional problem, and it
is probably not theoretically possible to optimize any given instance for
all of the possible vectors simultaneously.  Different individuals need
to make their own threat estimate, and decide what approach they want to 
take to it.

Of course, 95% of the affected audience wouldn't know what the phrase
"threat estimate" meant, even if you threatened them.

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra () baylink com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA      http://photo.imageinc.us             +1 727 647 1274

Current thread:

Re: Dear Linkedin,, (continued)
- - - Re: Dear Linkedin, Alec Muffett (Jun 08)
    - Re: Dear Linkedin, Michael Thomas (Jun 08)
    - Re: Dear Linkedin, Alec Muffett (Jun 08)
    - Re: Dear Linkedin, Owen DeLong (Jun 08)
    - Re: Dear Linkedin, Joe Provo (Jun 08)
    - Password safes &c. (was: Dear Linkedin,) Andrew Sullivan (Jun 08)
    - Re: Password safes &c. (was: Dear Linkedin,) Tyler Haske (Jun 08)
    - Re: Password safes &c. (was: Dear Linkedin,) Andrew Sullivan (Jun 08)
    - Re: Password safes &c. Paul Graydon (Jun 08)
    - Re: Password safes &c. (was: Dear Linkedin,) Lyndon Nerenberg (Jun 08)
    - Re: Password safes &c. (was: Dear Linkedin,) Jay Ashworth (Jun 09)
    - Re: Password safes &c. Paul Graydon (Jun 08)
    - Re: Password safes &c. (was: Dear Linkedin,) JoeSox (Jun 08)
    - Re: Dear Linkedin, Alec Muffett (Jun 08)
    - Re: Dear Linkedin, Lyndon Nerenberg (Jun 08)
    - Re: Dear Linkedin, Michael Thomas (Jun 08)
    - Password Safes Lyndon Nerenberg (Jun 08)
    - Re: Password Safes Michael Thomas (Jun 08)
    - Re: Password Safes JC Dill (Jun 10)
- Re: Dear Linkedin, Alec Muffett (Jun 08)
  - Re: Dear Linkedin, John Levine (Jun 08)

(Thread continues...)