[GRLUG] hacked

[Michael Mol]

Yup. Catch two or three of my passwords in plaintext, and you can
probably find the pattern. That's a good reason to cycle the personal
key, too.

On Thu, Jul 28, 2011 at 3:52 PM, Mike Williams <knightperson at zuzax.com> wrote:
> That is the alternative to a password vault of some kind. I think it's a lot
> more work and not as secure. If you can do it, great, but since a lot of
> people can barely memorize one decent password, it's hopeless that very much
> of the population could get away with this. The other problem is that unless
> your equation is fairly complicated, anyone who manages to get the plain
> text passwords from a site where you used one could fairly easily figure out
> the equation. Admittedly, that might be enough against a random attack since
> there will be plenty of passwords in the database that are not based on an
> equation and much easier to do use.
>
> On 07/28/2011 09:42 AM, Michael Mol wrote:
>>
>> In this conversation, I keep seeing things like 'random',
>> 'unguessable', etc. Those are really nice properties, but not what I
>> use.
>>
>> My system works like this:

-- 
:wq

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.