As systems administrators and security folks, we’ve all had our fill of our users and customers using simple passwords. Most operating systems these days now enforce some level of password complexity by default, with options to “beef up” the password requirements for passwords. The prevailing wisdom today is to use passphrases – demonstrated nicely by our bud at xkcd – http://xkcd.com/936/ So I routinely have very long pass phrases for public facing accounts. Imagine my surprise when I was creating a new account on major cloud service (the one that starts with an “O” and ends with a “365″), and found that I was limited to a 16 character password. Needless to say I have a case open to see if that limit can be removed. I’m not looking for no limit / invitation to a buffer overflow status on the password field, but something bigger than 16 would really be appreciated ! Â Â (c) SANS Internet Storm CenterRead More...
- Philip Virgo (@ITmeetsPolitics): surge in demand for #infosec skills might be as bad as Y2K, especially for banks April 24, 2014
- Trend on Underground Economy: "times are good, victims are plentiful, and the risk is relatively low" + no good news April 24, 2014
- 5 Iowa State Uni servers breached, made to mine #Bitcoins via #Synology, 30k SSNs probably not stolen, #cyclones April 24, 2014
- 21 y/olds in Cambodia arrested APR7:King Mongkolpanha (Black Cyber/Machine)+Chu Songheng (Zoro) alledgedly #Anonymous April 24, 2014
- Fun with Passphrases!, (Thu, Apr 24th) April 24, 2014
Tagsapi apple archives article browser bruce schneier business china copyright development director downloads education enterprise events facebook feeds gfi government hackers hacking industry infrastructure internet linkedin linux management microsoft network networks news opinion phishing podcasts science security social-media symantec team cyrmu technology united-kingdom united-states videos vulnerability windows