To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.admin.generalOpen lugnet.admin.general in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Administrative / General / 7790
7789  |  7791
Subject: 
Re: LUGNET Memberships
Newsgroups: 
lugnet.people, lugnet.admin.general
Date: 
Tue, 26 Sep 2000 06:08:34 GMT
Viewed: 
46 times
  
In lugnet.people, Todd Lehman writes:

Here are some tips on choosing hard-to-guess passwords that are easy to
remember:

  http://www.lugnet.com/people/members/password-suggestions

LUGNET's pw changer

  http://www.lugnet.com/people/members/pw/


I'm amazed on how complex and sophisticated the Lugnet password system is.
There are the password suggestions, Password strength analyzer which even
includes an internal dictionary and gives you the CPU time that it took to
analyze the password... I tried P4#$37FG and it barely passed.  Ability to
have multiple passwords (which means having a separate database table just for
the passwords), retire old passwords, etc, etc.
The funny thing is that the password doesn't really protect anything other
than the rating system and one's collection ... the last time I checked I
could post under someone else's username :-P



Message has 2 Replies:
  Re: LUGNET Memberships
 
(...) Yup, it's a serious system. Most systems don't take pw issues seriously. (...) We'll see how many people find it funny nine months from now. --Todd (24 years ago, 26-Sep-00, to lugnet.people, lugnet.admin.general)  
  Re: LUGNET Memberships
 
(...) That's a problem. It does fail too many good pw's, partially because it tries to be too clever in transmogrifications and 20 different language lookups in its dictionary of 3 million words. (It was just as easy to put in that many as it was to (...) (24 years ago, 26-Sep-00, to lugnet.people, lugnet.admin.general)

Message is in Reply To:
  Re: LUGNET Memberships
 
(...) ouch. How easy is it for a thief to get your customer number? How many digits is your PIN? (...) natch. :) (...) Disable accounts on repeated fails and you make it trivial to DoS someone. Disable IP addresses and you lock out the innocent on (...) (24 years ago, 25-Sep-00, to lugnet.people, lugnet.admin.general)  

113 Messages in This Thread:
(Inline display suppressed due to large size. Click Dots below to view.)
Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact

This Message and its Replies on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    

Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR