Path: utzoo!utgpu!water!watmath!clyde!bellcore!rutgers!gatech!uflorida!umd5!brl-adm!adm!and%eurotra.essex.ac.uk@nss.cs.ucl.ac.uk
From: and%eurotra.essex.ac.uk@nss.cs.ucl.ac.uk (Andy Holyer)
Newsgroups: comp.unix.questions
Subject: Re: Password Choices
Message-ID: <16462@brl-adm.ARPA>
Date: 12 Jul 88 11:33:48 GMT
Sender: news@brl-adm.ARPA
Lines: 37


In article <4387@ptsfa.PacBell.COM> jmc@ptsfa.PacBell.COM (Jerry Carlin) writes:
| Somewhere I remember hearing or reading that someone did a study
| about typical (bad) password choices and/or what consituted good
| password choices. Can anyone give me references? Thanks in advance.

The Trick I learned was:

a) Pick a common word

b) Append 2 or 3 random letters or (better) numbers to it.

Thus something like "letter4z" or "waterqx4" - the logic is that
snoopers will get the first few letters, but the random ones are then
almost impossible to get (If you're quick with them). Here in Blighty,
I find car registration numbers are good; for two reasons. One, you
always know your reg. no. (the first thing the police do over here if
the stop you is face you away from the car and ask for the reg. no -
easy way to spot if you've stolen it), and two, the structure is
almost exactly the above ( For those of you who don't know, British
car no's are of the pattern:
"{letter}{letter}{letter}{number}[number]{letter}"
or (for the last few years):
"{letter}{number}[number]{letter}{letter}{letter}"
... There is a quite good logic behind this - ask a brit if you're
interested, but that's another story. I don't suppose that would work
so well with all those customised amercian plates...


-----

	&ndy Holyer		(and@uk.ac.essex.eurotra)

(Usual disclaimers)

"I'm sorry it wasn't a Unicorn. It would have been nice to have
Unicorns" - Tom Stoppard