Password security - Another idea

Mark A. Heilpern heilpern at ibd.BRL.MIL
Wed Jan 11 23:13:15 AEST 1989


In article <329 at csd4.milw.wisc.edu> astieber at csd4.milw.wisc.edu (Anthony J Stieber) writes:
.>How about this:
.>	Each account has several passwords only one is active
.>	at a time.  On each login the next password (or phrase)
.>	is activated.  An alternative would be that at logout
.>	a password would randomly be chossen and message
.>	refering to that password would be printed for the
.>	user.  The advantage to this is that a user would
.>	know the moment they tried to login that some one
.>	has used their account (unless all passwords were
.>	broken).


Too many people are complaining that their users can not remember 
'complicated' passwords like "bad!memory", so how can we expect them to
remember what the computer said (eluded) their next password will be?
Also, when it came time to change the password, would he have to change
all of them, or just the one last used?
-- 
 |\/|         |
 |  |   _     |<
/    \_(_(_)\_/ \______



More information about the Comp.unix.wizards mailing list