What's the best way to handle checking for a similar previous password?

		LinuxQuestions.org > Forums > Linux Forums > Linux - Security
What's the best way to handle checking for a similar previous password?

Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Welcome to LinuxQuestions.org, a friendly and active Linux Community.

You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!

Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.

Are you new to LinuxQuestions.org? Visit the following links:
Site Howto | Site FAQ | Sitemap | Register Now

If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.

Having a problem logging in? Please visit this page to clear all LQ-related cookies.

Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.

Exclusive for LQ members, get up to 45% off per month. Click here for more info.

Page 2 of 2

Search this Thread

10-27-2010, 05:12 AM

#16

jschiwal

LQ Guru

Registered: Aug 2001

Location: Fargo, ND

Distribution: SuSE AMD64

Posts: 15,733

Rep:

Quote:

Originally Posted by anomie

In this particular case, I'd argue that the latter - being able to pick a similar, strong password - is better. How are you going to keep the old passwords encrypted? (Where will the encryption key live? Point is: some part of your process is going to either have a key or an old password stored as cleartext.)

A hacker using the PCL library will generate a list of passwords based on guesses of what the password contains. But I admit I've had the same though. Adding 4 characters to an old password at each change would make it easier to remember a very long random like passphrase.

Page 2 of 2

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is Off HTML code is Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Password checking has room for improvement	kenhtanaka	Linux - Security	7	03-01-2008 12:02 PM
How to handle with users & password with a server and plently linux boxes?	Xeratul	Linux - General	2	01-05-2007 03:02 PM
a similar program to roboform (password/auto login prog) in kde/linux?	zeltak	Linux - Software	1	02-10-2006 06:55 AM
Checking a password with PAM/Winbind?	quill18	Programming	1	05-25-2005 03:12 PM
Users hierarchy--similar to win2k;Group--password	l_9_l	Linux - Security	3	03-08-2002 09:52 AM

All times are GMT -5. The time now is 08:10 AM.

Main Menu

(Con't)

My LQ

Write for LQ

LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.

Main Menu

Syndicate

Latest Threads

LQ News

Twitter: @linuxquestions