Re: Continuous brute force attempt from own server !!! (OT question)

To: debian-user@lists.debian.org
Subject: Re: Continuous brute force attempt from own server !!! (OT question)
From: Chris Bannister <cbannister@slingshot.co.nz>
Date: Wed, 31 Jul 2013 21:44:35 +1200
Message-id: <[🔎] 20130731094434.GB2234@tal>
In-reply-to: <[🔎] CAAr43iN02wY8Od98BdnqCQ_k68_5wLUuBZr2LqWAmyWwvpQnrw@mail.gmail.com>
References: <[🔎] 20130727115259.GA18454@copernicus.demon.co.uk> <[🔎] 20130727170629.GD1735@khazad-dum.debian.net> <[🔎] 20130727222740.GA19973@big> <[🔎] 20130728053748.GB20388@big> <[🔎] 20130728131242.GA7076@khazad-dum.debian.net> <[🔎] CAAr43iPBDvMgWTvzuRo0uHCoNH5h_LZeupD+ACk1yg4jHU_UHw@mail.gmail.com> <[🔎] 20130729131259.GA32146@tal> <[🔎] CAAr43iOX4UoZ5OBYiastLBvmHeaSFqU4D==ZKn96tTWRVkG26g@mail.gmail.com> <[🔎] 20130729151946.GA1893@tal> <[🔎] CAAr43iN02wY8Od98BdnqCQ_k68_5wLUuBZr2LqWAmyWwvpQnrw@mail.gmail.com>

On Tue, Jul 30, 2013 at 08:49:35AM +0900, Joel Rees wrote:
> And I find myself puzzling over whether re-cycling a password by running it
> through an encryption device and using the encryption result as the new
> password is better or worse than using a random password generator.
> 
> Obviously, systemizing the process would set up a huge vulnerability,

Please, no neologisms. If you mean streamlining, then obviously you
would take that into account during the planning phase. 

> relative to former employees and others who might get access to the process
> and historical passwords.
> 
> On the other hand, picking a different encryption or even just a different
> encryption key at random would defeat the attempt to re-construct the
> generation chain.
> 
> If there were some need to be able to re-create the sequence of passwords,
> it might be useful, and it might be considered less exposing than leaving
> the old passwords in some closely guarded database.
> 
> (And having to think that deeply about such things ... 

I believe, it is called cost benefit analysis. :)

> ... is usually indication of structural problems in the organization. 

Convincing/reasoning with the "powers that be" seems to be
another issue: :(

http://www.3news.co.nz/Whistleblowers-reject-Collins-hacker-label/tabid/1607/articleID/293669/Default.aspx

-- 
"If you're not careful, the newspapers will have you hating the people
who are being oppressed, and loving the people who are doing the 
oppressing." --- Malcolm X

Reply to:

References:
- Re: Continuous brute force attempt from own server !!!
  - From: Brian <ad44@cityscape.co.uk>
- Re: Continuous brute force attempt from own server !!!
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Paul E Condon <pecondon@mesanetworks.net>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Paul E Condon <pecondon@mesanetworks.net>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Joel Rees <joel.rees@gmail.com>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Chris Bannister <cbannister@slingshot.co.nz>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Joel Rees <joel.rees@gmail.com>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Chris Bannister <cbannister@slingshot.co.nz>
- Re: Continuous brute force attempt from own server !!! (OT question)
  - From: Joel Rees <joel.rees@gmail.com>

Prev by Date: wodim and LITE-ON dvd
Next by Date: Re: Problems with installing HP LaserJet M1005 usb printer on debian clients on a network
Previous by thread: Re: Continuous brute force attempt from own server !!! (OT question)
Next by thread: Re: Continuous brute force attempt from own server !!! (OT question)
Index(es):
- Date
- Thread