On Sat, May 06, 2006 at 03:14:56PM -0400, Peter Fraser wrote: > I was very surprised, that when I was installing > a 3.9 system, that you can use an empty root password > > I accidentally entered a 'return' when it asked for the > root password, so I entered a 'return" again when > I was asked to repeat the password, thinking that > a empty password would be denied, and I would be asked > again. > Well, I actually think an empty password is a very good idea.
Think of somebody who burgles your house to steal your privat data. When your computer asks him to enter the password he sure will try the well known standard passwords like "god", "secret" and "sex". Or maybe "swordfish". But have you ever seen a film where someone was "hacked" by just typing nothing but enter? Let's play safe. Take a post-it and label it with the name of a woman you know. Then add a number at the and prepend it with "password:", like this: Password Marie5. He will try "Marie5", then "marie5", "Marie_five" and probably "5Mary" or "Password Marie5" but he sure won't try "". Try it, it works. -- | /"\ ASCII Ribbon | Jonathan Glaschke - Lorenz-Goertz-Stra_e 71, | \ / Campaign Against | 41238 Moenchengladbach, Germany; | X HTML In Mail | jabber: [EMAIL PROTECTED] | / \ And News | http://jonathan-glaschke.de/ [demime 1.01d removed an attachment of type application/pgp-signature]
