IET logo
 
IET
Decrease font size
Increase font size
Topic Title: Log in
Topic Summary: Still not working despite fiddling with passwords!
Created On: 05 October 2017 07:40 AM
Status: Read Only
Linear : Threading : Single : Branch
 Log in   - davezawadi - 05 October 2017 07:40 AM  
 Log in   - AJJewsbury - 05 October 2017 09:47 AM  
 Log in   - AJJewsbury - 05 October 2017 10:20 AM  
 Log in   - potential - 05 October 2017 01:49 PM  
 Log in   - GeoffBlackwell - 05 October 2017 03:26 PM  
 Log in   - kellyselectric - 05 October 2017 04:48 PM  
 Log in   - davidwalker2 - 05 October 2017 06:35 PM  
 Log in   - geoffsd - 05 October 2017 06:45 PM  
 Log in   - davezawadi - 05 October 2017 09:08 PM  
 Log in   - mapj1 - 05 October 2017 10:30 PM  
 Log in   - davezawadi - 06 October 2017 09:14 AM  
 Log in   - AJJewsbury - 06 October 2017 10:19 AM  
 Log in   - davezawadi - 06 October 2017 11:09 AM  
 Log in   - potential - 06 October 2017 12:41 PM  
 Log in   - kellyselectric - 08 October 2017 09:51 PM  
 Log in   - AJJewsbury - 06 October 2017 12:26 PM  
 Log in   - AJJewsbury - 06 October 2017 12:35 PM  
Search Topic Search Topic
Topic Tools Topic Tools
View similar topics View similar topics
View topic in raw text format. Print this topic.
 05 October 2017 07:40 AM
User is offline View Users Profile Print this message



davezawadi

Posts: 3843
Joined: 26 June 2002

I tried to log in this morning and was told my password was not complex enough, with the usual string of rules to ensure I would not remember it! Having changed it to something more suitable (which I need to write down, thus making it available to others) I still needed to log in twice to access the forum. The original problem has still not been fixed!

I will now turn to my other job. Those who think that transmitting passwords across the net is a good idea need to think again. It is not necessary to send them at all, just to use easily available encryption techniques to send a different long string each time which bears no relation to either the key string or the password. It appears that those who look at passwords understand nothing about security, be it the allegedly secure banks or the IET. All passwords would then be transmitted as an essentially random string of some length deemed to provide adequate protection against decoding (say 1024 bits) only once, so any kind of attack has essentially zero chance of breaking in. Simple enough to implement, and it no longer matters what the real password is because it will always provide the same length random string.

All of this was invented at GCHQ many years ago, and kept secret for a long time. It is pretty trivial for a modern computer to manage, but we still have this idiotic password business where the actual string is sent in plain language, and rules which make keeping them secret impossible.

You will find another method with my name on it in the Patent database, but the above is entirely adequate for passwords.

-------------------------
David
BSc CEng MIET
david@ZawadiSoundAndLighting.co.uk
Statistics

New here?


See Also:



FuseTalk Standard Edition v3.2 - © 1999-2017 FuseTalk Inc. All rights reserved.

..