Linked by Howard Fosdick on Sat 10th Nov 2012 07:28 UTC
Bugs & Viruses If you want to ensure you have adequate passwords but don't have the time or interest to study the topic, there's a useful basic article on how to devise strong passwords over at the NY Times. It summarizes key points in 9 simple rules of thumb. Also see the follow-up article for useful reader feedback. Stay safe!
Thread beginning with comment 542105
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[3]: Comment by Luminair
by Laurence on Mon 12th Nov 2012 09:23 UTC in reply to "RE[2]: Comment by Luminair"
Laurence
Member since:
2007-03-26


The main reason, as I understand it, is that those rules are there because of the outdated ideas about how to make secure passwords such as having numbers etc.

But the way to go has to be passphrases, and this technique needs to be taught. A passphrase can be much longer and thus more secure without much more memorization than a normal passwords.

Even z/OS now has support for passphrases. That is how out of date plain old passwords are.

Pass-phrases are better than *short* passwords, but most modern attacks target passphrases these days.

I've explained the technique modern attacks use and how it reduces the number of attempted permutations required in detail in this post: http://www.osnews.com/permalink?542101 .

Edited 2012-11-12 09:25 UTC

Reply Parent Score: 2