From owner-freebsd-current@FreeBSD.ORG Mon Apr 20 09:19:34 2009 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3E203106564A for ; Mon, 20 Apr 2009 09:19:34 +0000 (UTC) (envelope-from tim@clewlow.org) Received: from clewlow.org (clewlow.org [210.215.149.194]) by mx1.freebsd.org (Postfix) with ESMTP id A804B8FC12 for ; Mon, 20 Apr 2009 09:19:33 +0000 (UTC) (envelope-from tim@clewlow.org) Received: from 192.168.1.100 (localhost [127.0.0.1]) by clewlow.org (Postfix) with ESMTP id 23AF01C0851; Mon, 20 Apr 2009 19:00:21 +1000 (EST) Received: from 192.168.1.3 (SquirrelMail authenticated user tim) by 192.168.1.100 with HTTP; Mon, 20 Apr 2009 19:00:21 +1000 (EST) Message-ID: In-Reply-To: <49EC305D.4010202@NLnetLabs.nl> References: <754723275-1240208442-cardhu_decombobulator_blackberry.rim.net-1046132361-@bxe1006.bisx.prodap.on.blackberry> <49EC305D.4010202@NLnetLabs.nl> Date: Mon, 20 Apr 2009 19:00:21 +1000 (EST) From: "Tim Clewlow" To: "Jelte Jansen" User-Agent: SquirrelMail/1.4.15 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: freebsd-current@freebsd.org, anthony.rasat@gmail.com Subject: Re: OT: 2d password X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 20 Apr 2009 09:19:34 -0000 > Anthony M. Rasat wrote: >> Kỳ Anh, Huỳnh wrote: >>> I've just found a quite good way: use 2-d moving on the keyboard. >> >> Do you know that many people has following password? >> > > Correct me if i'm wrong, for i'm not really up-to-date on password > cracking > algorithms, but i think that keyboard patterns are amongst the thing > cracking > tools try before switching to brute force, so in that sense this > wouldn't make a > very strong password. > > Jelte I prefer to use mnemonics / ancronyms derived from a phrase, then add some numbers at the end as salt, eg, the phrase "The code that never executes at all is the fastest." would become "tctneaaitf123" - ie, I take the first letter of each word in the phrase, then add 123 at the end. Or you could use the 2nd or 3rd letters (skipping a word if it does not have that many letters) - the point is there are other ways to create relatively easily remembered passwords. Cheers, Tim. -- The code that never executes at all is the fastest.