A while ago we had a decent discussion going on about password security.
We created a dokuwiki, but it was never announced publicly to the group. To create an account you have to do a reCaptcha. It works on one of these domain names, but maybe not the other. I forgot which was which. http://pimpmypassphrase.realworldsecurity.com/dokuwiki/ http://pimpmypassphrase.secure.name/dokuwiki/ I'd like to hear some opinions on some things and invite all to throw stuff onto the dokuwiki. - What issues are there to discuss concerning passwords? - Are there any statics / reports / etc that promote certain practices? - HCI of passwords/phrases - Length allowed / recommended - Visibility - Forcing of special characters - Why people tack on the number 1 - Security of passwords/phrases - Front-end / Back-end - Secret questions - Storage - Transport - Code libraries - basic php, python, ruby, java, js - framework modules - repoze, authlogic AJ ONeal
-------------------- BYU Unix Users Group http://uug.byu.edu/ The opinions expressed in this message are the responsibility of their author. They are not endorsed by BYU, the BYU CS Department or BYU-UUG. ___________________________________________________________________ List Info (unsubscribe here): http://uug.byu.edu/mailman/listinfo/uug-list
