Subject: | |
From: | |
Reply To: | Johnson, Tracy |
Date: | Tue, 31 Jan 2006 21:47:36 -0500 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
John Clogg says:
>
> There have been several postings advising the use of random
> password generators. I know some security experts recommend
> that approach, but I disagree. The main problem with random
> strings of characters is that they are very hard to memorize,
> which means that you can pretty much guarantee that users
> will be writing down their passwords. Those notes with the
> passwords on them will be cleverly hidden under the keyboard
> or glued to the monitor. Great security, that!
>
> John Clogg
Recent security advice recommends just that. Users SHOULD
write down their passwords. Just not on a post-it next to
their workstation.
References:
http://www.schneier.com/crypto-gram-0507.html#7
Tracy Johnson
Measurement Specialties, Inc.
BT
NNNN
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|
|
|