On Mon, Feb 22, 2010 at 09:59:56 +0000, Alan Milnes <asm@xxxxxxxxx> wrote: > > To login you need the username and password - why help the bad guys by > giving them 50% of the information they need? Usernames typcially have a lot less entropy than passwords. You should be giving your opponents no where near 50% of the information they need to guess a valid username password combination by giving them a list of usernames. -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
