Alan Cox wrote: > On Sun, Oct 07, 2007 at 11:43:53AM -0400, Steve Grubb wrote: >> Yes that is true. But not having a valid account name doubles the complexity >> and requires you to work even longer. > > More than doubles. You've now got to guess two items from the dictionary as > a matching pair. Thats like trying to throw double one rather than a single > one on dice (only these dice are multi-million sided) > Right; it's increasing exponentially ;-) Throw in a smart card or any other third authentication token then calculate the attackers odds ;-) -- Kind regards, Jeroen van Meeuwen -kanarip -- http://www.kanarip.com/ RHCE, LPIC-2, MCP, CCNA C6B0 7FB4 43E6 CDDA D258 F70B 28DE 9FDA 9342 BF08 -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
