• Password registration

    When registering a password a specific site will not let me use allis chalmers 7010 for a password?  What is the problem?

    wachholtz35 pointsBadges:
  • AES encyption: More secure than SHA1?

    I know this is more of a curiosity but I wanted to get some expert opinions on this. I recently heard someone recommend stepping up from md5ing (not to SHA1) but to AES encrypting the password, which would use itself as the key. Does anyone have any recommendations on if that would be more or less...

    ITKE346,360 pointsBadges:
  • How to retrieve passwords in Thunderbird via HDD?

    How does Thunderbird 8 store passwords and how does one retrieve them via HDD? I would usually use NirSoft, but it's not compatible with Thunderbird 8.

    ITKE346,360 pointsBadges:
  • Is there really a security advantage when it comes to spittling a password?

    I've been reading more and more about the LANMAN (LM) hash and I'm having trouble understanding some of the concepts. Is there really any security advantage when it comes to splitting a password, encrypting the two halves separately, and combining the halves to form one hash? Or is it just more of...

    ITKE346,360 pointsBadges:
  • Lotus Notes security: Changing image for password

    I've recently noticed in Lotus Notes that when it asks for my password, it always shows a screen with a picture that appears to change after a new character is entered (after the fifth character).Now I'm not sure if this is security related but is this a way to distract an attacker from looking at...

    ITKE346,360 pointsBadges:
  • Which is more secure: Forgotten password or reset link?

    I've been recently been doing some studying on different security topics and I came across this: Is it more secure to send out a password reset link when a user forgets their password or send the original password unencrypted in an email? Now obviously I know not encrypting a password is bad...

    ITKE346,360 pointsBadges:
  • Security implications of a password blacklist

    Does maintaining a password blacklist on database create any security risks?  Basically, I'm looking to create a list of 500 or so commonly used passwords to stump very basic automated spambots.

    ITKE346,360 pointsBadges:
  • Why do websites force us to use passwords of a specific length?

    What is the reason that websites have very specific directives about the type of password and it's length that you can enter (8 characters with 2 being numbers, etc.). Are there technical reasons why its this way other than to stop stupid people from entering passwords that are easy to crack?

    ITKE346,360 pointsBadges:
  • Does a sysadmin know your password?

    I'm a software engineer at a small company. We've been having problems with our email hosting service. Not so much the company, but the service. While working through the issue with our sysdamin, he asked me for my password and I gave it to him without thinking. Later, it occurred to me that no one...

    ITKE346,360 pointsBadges:
  • Security: Sending a password / username over HTTPS

    Inside of my friend's website, when a user logs in, they send their username / password to him over HTTPS. Besides having a SSL, there isn't a special obfuscation of the password (it's living in memory in the browser).Is there anything else he should do to tighten security? Should he keep it...

    ITKE346,360 pointsBadges:
  • Tellabs 532L DACS password

    Does anyone know how to reset Tellabs 532L DACS back to the factory default of TELLABS?

    comstock5 pointsBadges:
  • Hashing passwords: Is it a good idea?

    Now, I'm not sure if this is the best idea so that's why I'm trying to start this discussion. For hashing passwords, should we use hashed passwords as the salt?$passwd = 'foo'; $salt = hash($passwd); $finalHash = hash($passwd . $salt);The $finalHash is what would be stored in the database. I do...

    ITKE346,360 pointsBadges:
  • Passwords stored in memory: Is it safe?

    I recently realized when you save a password in a variable, it's actually stored as plain text in the memory.I know the OS does a good job by forbidding processes from accessing other allocated memory. But isn't it still bypassable? Is there a safer way to store passwords to make sure processess...

    ITKE346,360 pointsBadges:
  • Generating strong, unique and memorable passwords

    Can someone help me with good strategies for generating personal passwords that are unique and strong, but easy to remember?

    ITKE346,360 pointsBadges:
  • How do I make sure someone isn’t stealing my password?

    I travel a lot for my company and have been doing some work in third-world countries lately. I've been using the Internet at different Internet cafes and I'm worried about if anyone could have stolen my password or listen to my keystrokes. I've heard one way to get around that would be to write...

    ITKE346,360 pointsBadges:
  • Why does my organization make us change our password every 90 days?

    The company I work for makes us change my password every 90 days. I know this is commonplace for many organizations but I'm trying to find out if there is a specific vulnerability that it's designed to counter. Or is it just good practice to be done?I know it's a general security question but it's...

    ITKE346,360 pointsBadges:
  • Password error

    please help me solve my wifes answering book turbo pascal. I'm not expert to this field but I'm trying to study it myself. i cant solve this one. here it is: Write a program that have a password, and if the password enter 3 times is failed, it will appear 'error'. I would greatly appreciate those...

    haroldbolambao5 pointsBadges:
  • Why do we trust email for password resets?

    Since email is considered insecure why do we trust it for password resets?

    ITKE346,360 pointsBadges:
  • Is password hashing really important? Why?

    I've been studying up on my security expertise and I came across an article that talked about the benefits of hashing a password (as a second layer of defense). This is the trouble I'm having with it:Would password hashing only be important if the system is not strong enough to give an intruder...

    ITKE346,360 pointsBadges:
  • Passwords stored in Plain Text?

    I joined a forum a while back and hadn't returned for a while. In the meantime, I forgot my password. When I returned and clicked their "Request Help With Password link", they sent me my password in Plain Text via email instead of sending me a unique link to reset my password. I would imagine the...

    ITKE346,360 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following