Password size does matter
I was recently contacted by the company that manages my stock to open up a new Web site logon account. During new account creation, it asked me to input a secure password. So, I put in my normal password that is 21 characters long followed by 10 characters that are unique per Web site, but only uses lowercase letters. The length of the base password prevents basic password cracking and guessing, while the additional characters make the overall password (or pass phrase) unique so that no two resources ever have the same password.
At 31 characters long, my password is all but unhackable. Attackers will need to find another way to compromise my account rather than trying to guess it or crack it with brute force. Password size does matter | InfoWorld | Column | 2006-07-21 | By Roger A. Grimes
Back to: PC Security, privacy news