In article <[email protected]>, Paul Rubin <[email protected]> wrote: > >From a security point of view, the concept >of "password strength checking" is pretty dubious. If you want secure >passwords, generate them from a random number source and assign them to >the users. Don't have the users make up their own passwords. It's >relatively (compared to using a computer file exposed to remote internet >attacks) for users to write down the the random passwords on paper, as >long as they're a little bit careful. As Bruce Schneier put it: > > "My wallet is already a secure container; it has valuable things in > it, and I have a lifetime of experience keeping it safe. Adding a > piece of paper with my passwords seems like a natural thing to do."
Actually, I treat my wallet as a source of trouble and only keep replaceable items in it. -- Aahz ([email protected]) <*> http://www.pythoncraft.com/ import antigravity -- http://mail.python.org/mailman/listinfo/python-list
