[p2p-hackers] guidelines for good password policy and maintenance /user centric identity with single passwords (or a smallnumber at most over time)

[Enzo Michelangeli]

----- Original Message ----- 
From: "coderman" <coderman at gmail.com>
Sent: Monday, March 27, 2006 1:46 AM

> comments?
>
> Creating a secure password:
>
>     o Include punctuation marks and numbers.
>     o Mix capital, lowercase and space characters.

I would avoid mixed-case passwords: the extra bit of information per
character is a small reward for the increase in difficulty to remember the
position of the dang lower- and uppercase characters... Better just add a
few characters.

Enzo

P.S. I don't add the obvious: almost nothing can help if the password is
intended for Windows login ;-) (see www.loginrecovery.com )