> For what it's worth; I use a similar manual system; which creates a > strong password which are very easy to remember. (ie password > containing a mix of upper case letters, lower case letters and > numbers.) > You have two cats called Tiddles and Cuddles which were born in 2002 > = TidCud02
Still moving waaay OT. This approach generates keys that appear strong, and are moderately strong against a bad guy who picks you at random. But not all bad guys do that. Many (most?) serious attacks start with some social engineering. Finding your name, wife's name, kids names, pets names is fairly easy, whether it be by looking at facebook or just walking down the street and being friendly when you are walking the dog. Your tidcut02 example is not close to random. A dictionary of your favorite words, pets, etc. with all sorts of variant spellings is still tiny. Better than leaving it as "linksys" but really a false security. I personally believe that remembered passwords just don't work for serious security. If its random enough to be strong, you won't remember it. If you can remember, its not really strong. Protecting your music library does not require serious security. Pat -- Pat Farrell http://www.pfarrell.com/ _______________________________________________ discuss mailing list [email protected] http://lists.slimdevices.com/lists/listinfo/discuss
