nanog mailing list archives

Re: User negligence?

From: David Lesher <wb8foz () nrk com>
Date: Sun, 27 Jul 2003 10:21:00 -0400 (EDT)


Speaking on Deep Background, the Press Secretary whispered:



So, I end up having to do something INSECURE to remember the stupid 
password.  Either I have to create an insecure and "easy to remember" 
password, or I have to write it down somehow.  Now we are back to the root 
problem, that the user's computer/user's password is now "insecure" and it 
"isn't the bank's fault" when the user's password is discovered and used 
without the user's permission.  Well, that's BS.  The bank created a policy 
that can not be securely followed!  There is more to maintaining a secure 
password than changing it frequently.  The policy has to be on that can be 
effectively followed by most people!



Strip <http://www.zetetic.net/index.html> is your helper here.


-- 
A host is a host from coast to coast.................wb8foz () nrk com
& no one will talk to a host that's close........[v].(301) 56-LINUX
Unless the host (that isn't close).........................pob 1433
is busy, hung or dead....................................20915-1433

Current thread:

Re: Its not just Spam and DDOS anymore (was Re: OT: Re: User, (continued)
- - - Re: Its not just Spam and DDOS anymore (was Re: OT: Re: User Patrick (Jul 27)
    - RE: OT: Re: User negligence? David Schwartz (Jul 27)
    - Re: OT: Re: User negligence? Simon Lockhart (Jul 27)
- Re: User negligence? Barney Wolff (Jul 27)
- Re: User negligence? Kandra Nygårds (Jul 27)
  - Re: User negligence? Sean Donelan (Jul 27)
    - Re: User negligence? Kandra Nygårds (Jul 27)
  - Re: User negligence? Owen DeLong (Jul 27)
    - Re: User negligence? James H. Cloos Jr. (Jul 27)
  - Re: User negligence? JC Dill (Jul 27)
    - Re: User negligence? David Lesher (Jul 27)
    - Re: User negligence? JC Dill (Jul 27)
    - Re: User negligence? Christopher L. Morrow (Jul 27)
    - Re: User negligence? Stephen Sprunk (Jul 27)
    - Re: User negligence? ken emery (Jul 27)
    - Re: User negligence? Peter Galbavy (Jul 28)
    - Remembering history passwords may be bad, but they are getting worse Sean Donelan (Jul 27)
    - Message not available
    - Re: Remembering history passwords may be bad, but they are getting worse Kevin Day (Jul 27)
    - Re: Remembering history passwords may be bad, but they are getting worse Peter Galbavy (Jul 27)
    - Re: Remembering history passwords may be bad, but they are getting worse Scott Call (Jul 28)
    - Learning more about authentication and passwords Sean Donelan (Jul 29)

(Thread continues...)