|more useful options
Keys beside keys on keyboardsby Smaug (Pilgrim)
|on Nov 06, 2006 at 06:11 UTC
Smaug has asked for the wisdom of the Perl Monks concerning the following question:
In a resent conversation about passwords and their strength a friend of mine told me how their passwords can not contain three sequential characters on a keyboard. At first I thought this was just another case of security gone mad. (The more you restrict users the easier attacks become - in this case you can immediately eliminate surrounding keys if you know one - but that's another debate)
However, I've become increasingly intrigued as to how this is done. I've tried searching for modules or keyboard maps, but still can't work out how it's done.
To make things worse, the app in question is web based and could be accessed from anywhere in the world and I'm fairly sure we aren't all using QWERTY US keyboards....
In short, please help me with this conceptually; How do I tell if three key pressed in sequence are next to each other on different keyboards?
Thanks a million,
Thanks for the insight. To be honest I have no idea if their method is 100% accurate, I just assumed it would be, and as for using cell phones, well I don't think they have ever thought about it!!
As for diagonal sequences, I would assume they check those too, but that makes it far more complex.
Thanks all for you explanations on this question. It seems that however this is done it requires you to know the keyboard layout as the starting point.
Is there any way to detect a users input locale using a CGI script? Perhaps that is where they start.