Beefy Boxes and Bandwidth Generously Provided by pair Networks
Just another Perl shrine
 
PerlMonks  

Re: •Re: A reasonable temporary password generator?

by Your Mother (Archbishop)
on May 10, 2003 at 11:37 UTC ( #257106=note: print w/replies, xml ) Need Help??


in reply to •Re: A reasonable temporary password generator?
in thread A reasonable temporary password generator?

Good question; sorry I didn't give more. This would just be a placeholder for a new website user account registration, or for a lost password reset, probably md5'd into a DB, no SSL or htpasswd in this case.
  • Comment on Re: •Re: A reasonable temporary password generator?

Replies are listed 'Best First'.
•Re: Re: •Re: A reasonable temporary password generator?
by merlyn (Sage) on May 10, 2003 at 11:43 UTC
    In that case, since a human would have to enter it, I'd stick with 6-to-10 alphanumerics only, but run it past cracklib to make sure it's not trivially brute-forceable, and also have some mechanism to ensure that it gets changed on first use.

    -- Randal L. Schwartz, Perl hacker
    Be sure to read my standard disclaimer if this is a reply.

      Yeah, good point, I wasn't thinking of user-friendly and I should be. More friction means fewer users.

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://257106]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others rifling through the Monastery: (4)
As of 2022-01-23 10:28 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    In 2022, my preferred method to securely store passwords is:












    Results (63 votes). Check out past polls.

    Notices?