RE: Whitespace in passwords

From: Craig Wright (cwright@bdosyd.com.au)
Date: Sun Sep 18 2005 - 17:21:00 EDT

• Next message: Ivan .: "Re: hopfake question."
• Previous message: Murali Raju: "Re: hopfake question."
• Maybe in reply to: bryan allott: "Whitespace in passwords"
• Next in thread: Craig Wright: "RE: Whitespace in passwords"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

No, just that this argument is getting pointless. That
1 There are other tables than the rainbow project ones that the effectively public
2 No user will ever use these passwords which we are sugessting
3 Security is about the most bang for the buck at the end of the day
 
It is easier to stop the capture of passwords than to be able to get users to use VERY strong ones.
 
The simple fact is that we live in the real world and not an idealised one where users do the best in every way all the time
 
Craig

        -----Original Message-----
        From: dave kleiman [mailto:dave@isecureu.com]
        Sent: Mon 19/09/2005 7:08 AM
        To: pen-test@securityfocus.com
        Cc: 'Anders Thulin'; 'bryan allott'; compuwar@gmail.com; 'Peter Parker'; Craig Wright
        Subject: RE: Whitespace in passwords
        
        
         

• Next message: Ivan .: "Re: hopfake question."
• Previous message: Murali Raju: "Re: hopfake question."
• Maybe in reply to: bryan allott: "Whitespace in passwords"
• Next in thread: Craig Wright: "RE: Whitespace in passwords"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:55 EDT