a thought about UNIX login security

rcj at burl.UUCP rcj at burl.UUCP
Sat Jun 18 00:18:54 AEST 1983


A system for choosing passwords only works if the range of
that system is incredibly large and cannot be whittled down
in some manner.  For example, a required seven-character password
provides a sufficient range itself, if you do not start using
your dog's name or some geometric pattern on the keyboard.
If everyone picked truly random passwords of some minimum length,
there would be no password problem.  Unfortunately, us mere mortals
have to remember them.  I think that the idea of using some mnemonic,
(the first line of a poem, ad campaigns, the funny thing your daughter
said yesterday, etc.) as the basis for a password may be OK, if you
are suitably circumspect.  Who is going to have the data space and/or
time to put enough stuff into a data base to try out "tnpgnq" ("Take
no prisoners, give no quarter.")?
-- 

The MAD Programmer -- 919-228-3814 (Cornet 291)
alias: Curtis Jackson	...![ floyd sb1 mhuxv ]!burl!rcj



More information about the Comp.unix.wizards mailing list