Date: Sat, 28 Feb 1998 14:22:50 -0400 (AST) From: Michael Richards <miker@scifair.acadiau.ca> To: Jan Koum <jkb@best.com> Cc: "Eric A. Davis" <edavis@nas.nasa.gov>, LOlayiwola <LOlayiwola@aol.com>, questions@FreeBSD.ORG Subject: Re: Unix System Security Message-ID: <Pine.BSF.3.96.980228141526.17967A-100000@scifair.acadiau.ca> In-Reply-To: <Pine.BSF.3.96.980227234850.27617I-100000@shell6.ba.best.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 27 Feb 1998, Jan Koum wrote: > >>A password like: 3%gP)3s would be a good one because it is not > One reason this would not be a good password is if the user can't > remember it is forced to write it down somewhere. In my mind it is better that a user write a password down and carr it on them for a few weeks until they can memorise than picking a dumb password that anyone could guess. One thing I often tell users is to take a phrase or chunks of lyrics from a song that they like, and take some of the letters. That way they can think about the song or whatever and remember their password. ta#ewa2# Now if you knew this password came from something dumb like: There A (hash) EveryWhere A (hash hash) You've now got something you can remember. I guess the method of remembering is user-dependant, but the point is, many many users choose BAD passwords, and something made up of english words is not a good password. -Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980228141526.17967A-100000>