On 18 Apr 2011, at 17:11, Robert J. Hansen wrote: > On 4/18/2011 11:46 AM, Mark H. Wood wrote: >> It's easy to build gadgets which yield passwords that are >> mathematically very strong. The problem is that such passwords tend >> to be psychologically and pragmatically weak: you'll never remember >> "dishGhebJactotCerUnJodNavhahifbobTyWodvacushdojHashJakfawnairvak". > > I know lots of people who have memorized their 23-digit credit card + > expiration date + security code. A Base-64 encoding of a 128-bit hash > algorithm is 22 characters long.
Now insist that they change them every month. And that they have a different one for every application that they use. Single Sign On is a grat idea, but unlikely to be practical in the near future. Regards, Andy -- Andrew Long andrew dot long at mac dot com
PGP.sig
Description: This is a digitally signed message part
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
