Penetration Testing mailing list archives
Re: Secure Password Policy?
From: "Marek Isalski" <Marek.Isalski () smuht nwest nhs uk>
Date: Fri, 20 Jan 2006 08:24:24 +0000
Next step is to determine how many bits of entropy (B) are in each character and the length of the password can be calculated: L = log(S)/B
For secure passphrases, using things like www.diceware.com might be a consideration. It does away with per-letter entropy calculations and lets you securely build a passphrase with an almost precisely known entropy. Regards, Marek ------------------------------------------------------------- This message has been scanned for all viruses by Sophos Sweep <<<<GWAVAsig>>>> ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- RE: Secure Password Policy?, (continued)
- RE: Secure Password Policy? Mark Atherton (Jan 19)
- Re: Secure Password Policy? intel96 (Jan 22)
- Re: Secure Password Policy? DMORROW5 (Jan 19)
- RE: Secure Password Policy? Jarmon, Don R (Jan 19)
- Re: Secure Password Policy? Sean Earp (Jan 22)
- FW: Secure Password Policy? Mike Harlan (Jan 20)
- Re: FW: Secure Password Policy? Rurouni Alucard Kawarami Himura (Jan 22)
- RE: FW: Secure Password Policy? Erin Carroll (Jan 23)
- Re: Secure Password Policy? Thor (Hammer of God) (Jan 23)
- Re: FW: Secure Password Policy? Rurouni Alucard Kawarami Himura (Jan 22)
- Re: FW: Secure Password Policy? kindageeky (Jan 21)
- Re: Secure Password Policy? Marek Isalski (Jan 22)
- RE: Secure Password Policy? Anders Thulin (Jan 22)
- RE: Secure Password Policy? Shenk, Jerry A (Jan 22)
- RE: Secure Password Policy? Todd Towles (Jan 22)
- RE: Secure Password Policy? Mark Atherton (Jan 19)