Path: utzoo!utgpu!watmath!clyde!att!ucbvax!bloom-beacon!athena.mit.edu!jik From: jik@athena.mit.edu (Jonathan I. Kamens) Newsgroups: comp.unix.wizards Subject: Re: Password security - Another idea Message-ID: <8714@bloom-beacon.MIT.EDU> Date: 10 Jan 89 15:12:38 GMT References: <228@sea375.UUCP> <4497@xenna.Encore.COM> <6634@killer.DALLAS.TX.US> <674@ihnet.ATT.COM> <8705@bloom-beacon.MIT.EDU> <9326@smoke.BRL.MIL> Sender: daemon@bloom-beacon.MIT.EDU Reply-To: jik@athena.mit.edu (Jonathan I. Kamens) Organization: Massachusetts Institute of Technology Lines: 38 In article <9326@smoke.BRL.MIL> gwyn@brl.arpa (Doug Gwyn (VLD/VMB) ) writes: >No matter how much you tell users not to do this, so long as the >password is one they cannot easily remember sooner or later some >of them are going to compromise it this way. Your personal use of >paper in your wallet is not the worst security problem in such an >environment. I think we're sort of agreeing with each other :-). We both agree that the use of passwords that are hard to remember causes a decrease in security. I feel this way (and I think you will agree with my reasoning) for the following reasons: 1. A harder to remember password is typed more slowly by the user. When a password is typed more slowly, it is easier to read what the user is typing off of his fingers as he types it. 2. A harder to remember password is written down by the user. Forcing the user to write down his/her password is a problem because no matter where he writes it down and how securely he treats that piece of paper (or whatever), it is still more likely that someone will see it and get his password. Furthermore, users are known not to be careful (as you pointed out), so it is more likely that the password will be written down in an insecure location (taped to the terminal, pull-out desk, etc.) than that it will be written in a secure location. There is a third reason why hard-to-remember passwords are a problem: 3. Users will forget hard-to-remember passwords more often and/or lose the paper on which the password is written, so system administrators will have to put up with people coming to them and asking, "Can you change my password to something simple because I forgot what it is?" much more often. So, are we arguing the same side, or what? Jonathan Kamens MIT Project Athena