Re: Password policy.
- Date: Tue, 13 Nov 2018 18:14:32 +0000
- From: Brian <ad44@xxxxxxxxxxxxxxx>
- Subject: Re: Password policy.
On Tue 13 Nov 2018 at 08:23:13 -0800, peter@xxxxxxxxxxx wrote:
> specifies "6 to 8 characters". Is that adequate against currently
> available brute force?
Much too fuzzy a question. You are going to have to say what you mean
by "brute force", how it is taking place and against what. The six
letter password "a*isvg" might be good enough when it is someone
sitting in front of the machine trying to get in (the delay between
failed logins can be exasperating). OTOH, if a*isvg is known to be the
name of your dog.......