Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: File Encryption - Part II

From: Kamal Habayeb <mountainfury () fastmail fm>
Date: Tue, 16 Sep 2003 09:27:52 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Kenneth Buchanan wrote:
| The point of EFS is to allow file/folder access only to the appropriate
| logged-on user ...

~  As a general rule, if a password can be remembered, it can be brute
| forced.

I agree with you here Kenneth, passwords are usually the weak link in
the security equation.  I am a strong believer in pass-phrases.  Using
something like IHatE8traFFic%inDMornING* would offer a strong password
and something that the user would be able to remember better than a
randomly generated strong password.

Cheers,
Kamal Habayeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE/ZzoHWz5e+owG3loRAkKFAJwOji8ekRe9yuV82C7io9WEUhL+swCeNIOt
XNQnnszG7Npb+vvfAZ/zo+0=
=itM9
-----END PGP SIGNATURE-----


---------------------------------------------------------------------------
Captus Networks Are you prepared for the next Sobig & Blaster? - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans - Precisely Define and Implement Network Security - Automatically Control P2P, IM and Spam Traffic FIND OUT NOW - FREE Vulnerability Assessment Toolkit http://www.captusnetworks.com/ads/42.htm 
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: