inside the man

Friday, June 17, 2005

Just don't write them on yellow stickies on you monitor!

Here it is from the source. Now we can all go and update our corporate security policies to reflect this advice. Or, as Schneier has advised as an alternative, get the open source Password Safe.

"This is good advice, and I've been saying it for years. Simply, people can no longer remember passwords good enough to reliably defend against dictionary attacks, and are much more secure if they choose a password too complicated to remember and then write it down. We're all good at securing small pieces of paper. I recommend that people write their passwords down on a small piece of paper, and keep it with their other valuable small pieces of paper: in their wallet."

1 comment:

Google CEO said...

Fuck that! I just remember the damn things, or upgrade to biometric security! Writing them down in a 'safe' or 'secure' place adds another flaw to an already prone system!

Blog Archive

About Me

My photo
Edmonton, Alberta, Canada
Returned to working as a Management Consultant, specializing in risk, security, and regulatory compliance, with Fujitsu Canada after running the IT shop in the largest library in the South Pacific.

CC Developing Nations
This work is licensed under a Creative Commons Developing Nations license.

Site Meter