wraggster
July 13th, 2009, 15:58
Jamie noticed that Bruce Schneier wrote a piece on a paper on strong passwords that tells us that the old 'strong password' advice that many of us (myself included) regard as gospel might not be as true as we had hoped. They make things hard on users, but are useless against phishing and keyloggers. Everyone can change their password back to 'trustno1' now.
http://it.slashdot.org/story/09/07/13/1336235/Strong-Passwords-Not-as-Good-as-You-Think
http://it.slashdot.org/story/09/07/13/1336235/Strong-Passwords-Not-as-Good-as-You-Think