Web lists-archives.com

Re: Password policy.




On Tue 13 Nov 2018 at 08:23:13 -0800, peter@xxxxxxxxxxx wrote:

> Hi, 
> 
> https://www.debian.org/doc/manuals/debian-reference/ch04.en.html#_good_password
> specifies "6 to 8 characters".  Is that adequate against currently
> available brute force?

Much too fuzzy a question. You are going to have to say what you mean
by "brute force", how it is taking place and against what. The six
letter password "a*isvg" might be good enough when it is someone
sitting in front of the machine trying to get in (the delay between
failed logins can be exasperating). OTOH, if a*isvg is known to be the
name of your dog.......

-- 
Brian.