IET logo
 
IET
Decrease font size
Increase font size
Topic Title: Log in
Topic Summary: Still not working despite fiddling with passwords!
Created On: 05 October 2017 07:40 AM
Status: Read Only
Linear : Threading : Single : Branch
 Log in   - davezawadi - 05 October 2017 07:40 AM  
 Log in   - AJJewsbury - 05 October 2017 09:47 AM  
 Log in   - AJJewsbury - 05 October 2017 10:20 AM  
 Log in   - potential - 05 October 2017 01:49 PM  
 Log in   - GeoffBlackwell - 05 October 2017 03:26 PM  
 Log in   - kellyselectric - 05 October 2017 04:48 PM  
 Log in   - davidwalker2 - 05 October 2017 06:35 PM  
 Log in   - geoffsd - 05 October 2017 06:45 PM  
 Log in   - davezawadi - 05 October 2017 09:08 PM  
 Log in   - mapj1 - 05 October 2017 10:30 PM  
 Log in   - davezawadi - 06 October 2017 09:14 AM  
 Log in   - AJJewsbury - 06 October 2017 10:19 AM  
 Log in   - davezawadi - 06 October 2017 11:09 AM  
 Log in   - potential - 06 October 2017 12:41 PM  
 Log in   - kellyselectric - 08 October 2017 09:51 PM  
 Log in   - AJJewsbury - 06 October 2017 12:26 PM  
 Log in   - AJJewsbury - 06 October 2017 12:35 PM  
Search Topic Search Topic
Topic Tools Topic Tools
View similar topics View similar topics
View topic in raw text format. Print this topic.
 05 October 2017 09:08 PM
User is offline View Users Profile Print this message



davezawadi

Posts: 3957
Joined: 26 June 2002

HTTPS is only somewhat secure. If one can monitor the whole transaction to set a key, it is easy to break. Fortunately not too many people can manage to do this as it means either a direct connection to one end of the link, or a massive monitoring operation of the entire internet. Using a whole phrase rather than a word is considerably better as it prevents dictionary attacks (at least of a fairly simple kind). However you would be surprised how many sites limit the password length to perhaps 12 characters, which is crazy and extremely ignorant of the site concerned. A hash of the password to 1k or more bits is an excellent idea, and easily implemented on your device, meaning that you can then use any simple password which can be remembered, assuming that this 128 character string is acceptable to the site. I must test the IET!

-------------------------
David
BSc CEng MIET
david@ZawadiSoundAndLighting.co.uk
Statistics

New here?


See Also:



FuseTalk Standard Edition v3.2 - © 1999-2017 FuseTalk Inc. All rights reserved.

..