SecurityFocus

Password complexity - improvement Aug 15 2007 06:14AM
dubaisans dubai (dubaisans gmail com) (5 replies)

RE: Password complexity - improvement Aug 16 2007 01:44PM
Jim Harrison (Jim isatools org)

Re: Password complexity - improvement Aug 15 2007 06:39PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net) (4 replies)

Re: Password complexity - improvement Aug 24 2007 09:53PM
Chris Barber (cmbarber gmail com)

RE: Password complexity - improvement Aug 16 2007 09:00PM
Adrian Marsden (amarsden jvsdet org)

RE: Password complexity - improvement Aug 16 2007 04:32PM
Thor (Hammer of God) (thor hammerofgod com) (2 replies)

Re: Password complexity - improvement Aug 16 2007 09:09PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net)

On 2007-08-16 Thor (Hammer of God) wrote:
>>> Is there a way to enforce all 4 properties.
>>
>> Enforcing passwords that MUST consist of uppercase letters, lowercase
>> letters, numbers AND special characters reduces the total number of
>> possible passwords, which in consequence has a negative impact on
>> your security.
>
> Just to follow up, this is incorrect. More possible source characters
> == more possible combinations. Can you elaborate on what you mean by
> this?

This is not about more possible source characters. The amount of source
characters is exactly the same in both cases. I'm talking about limiting
the possible combinations out of these source characters. See my other
reply.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

[ reply ]

RE: Password complexity - improvement Aug 16 2007 06:50PM
Devin Ganger (DevinG 3sharp com) (1 replies)

RE: Password complexity - improvement (correction) Aug 17 2007 09:29PM
James D. Stallard (james leafgrove com)

RE: Password complexity - improvement Aug 15 2007 10:53PM
Adrian Marsden (amarsden jvsdet org) (1 replies)

Re: Password complexity - improvement Aug 16 2007 03:39PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net)

RE: Password complexity - improvement Aug 15 2007 06:12PM
Kunz, Jeffrey T. (JKunz foley com)

SV: Password complexity - improvement Aug 15 2007 05:55PM
Per Thorsheim (putilutt online no)

RE: Password complexity - improvement Aug 15 2007 04:25PM
Bean, John (DSHS) (BeanWj dshs wa gov) (1 replies)

RE: Password complexity - improvement Aug 15 2007 08:44PM
Thor (Hammer of God) (thor hammerofgod com) (1 replies)

RE: Password complexity - improvement Aug 16 2007 05:16PM
James D. Stallard (james leafgrove com) (1 replies)

Re: Password complexity - improvement Aug 16 2007 05:49PM
Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (sbradcpa pacbell net)