Wednesday, November 9, 2005
Has anyone else noticed how difficult the requirements for passwords have become lately? Do the people setting these policies have any clue that it is virtually impossible for any user to remember all of their complex passwords and end up writing them down in not-so-secure places?
Every single network administrator I know puts all of their passwords into an encrypted file on their PDA. If you want access to an entire network, steal one of the admin’s PDAs and hack any encrypted files. You’ll have more access to the systems they control then you could ever get by hacking into the network itself.
Sorry, due to comment spam abuse, new comments on this entry are closed until I find time to upgrade Movable Type and enable registration and moderation.