Re: dropbox security situation

To: debian-user@lists.debian.org
Subject: Re: dropbox security situation
From: John Hasler <jhasler@newsguy.com>
Date: Mon, 09 Dec 2019 14:17:39 -0600
Message-id: <[🔎] 877e35ckyk.fsf@dhh.gt.org>
Reply-to: jhasler@newsguy.com (John Hasler)
In-reply-to: <[🔎] 157590549515.966557.13274790693691709138@auryn.jones.dk> (Jonas Smedegaard's message of "Mon, 09 Dec 2019 16:31:35 +0100")
References: <[🔎] alpine.NEB.2.21.1912071158190.26808@panix1.panix.com> <[🔎] 07122019203529.4a2ba73a3549@desktop.copernicus.org.uk> <[🔎] alpine.NEB.2.21.1912071643220.12775@panix1.panix.com> <[🔎] 07122019220045.e913ec2b4cb4@desktop.copernicus.org.uk> <[🔎] alpine.NEB.2.21.1912071819060.3711@panix1.panix.com> <[🔎] 87immrdj4p.fsf@dhh.gt.org> <[🔎] LvadeHz--3-1@tuta.io> <[🔎] 20191209075626.518058c3@jhegaala.localdomain> <[🔎] 157590549515.966557.13274790693691709138@auryn.jones.dk>

 Jonas Smedegaard writes:
> I dislike APG because it generates passwords difficult to remember -
> without aiding in how to deal with that, which has a high risk of
> passwords getting stored on physical notes in the top drawer...

Bruce Schneier recommends writing passwords down and then keeping the
document containing them secure.

"Never write a password down!" comes from the days when the typical user
had a single password which she used to log on to the Vax from the VT220
on her desk in her cubicle. The admonition was intended to stop her from
writing it on a Post-It note and sticking it on the corner of her
terminal (or, if she was security minded, hiding it under her blotter).
The sysadmins, who kept a copy of the root passsword in the safe, saw no
reason why she couldn't just memorize the damn thing.  It was only six
letters, after all, and if she forgot it they would give her a new one.
-- 
John Hasler 
jhasler@newsguy.com
Elmwood, WI USA

Reply to:

Follow-Ups:
- Re: dropbox security situation
  - From: Jonas Smedegaard <jonas@jones.dk>
- Re: dropbox security situation
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

References:
- dropbox security situation
  - From: Jude DaShiell <jdashiel@panix.com>
- Re: dropbox security situation
  - From: Brian <ad44@cityscape.co.uk>
- Re: dropbox security situation
  - From: Jude DaShiell <jdashiel@panix.com>
- Re: dropbox security situation
  - From: Brian <ad44@cityscape.co.uk>
- Re: dropbox security situation
  - From: Jude DaShiell <jdashiel@panix.com>
- Re: dropbox security situation
  - From: John Hasler <jhasler@newsguy.com>
- Re: dropbox security situation
  - From: <l0f4r0@tuta.io>
- Re: dropbox security situation
  - From: Charles Curley <charlescurley@charlescurley.com>
- Re: dropbox security situation
  - From: Jonas Smedegaard <jonas@jones.dk>

Prev by Date: Re: [OT] Google security
Next by Date: Re: [OT] Google security
Previous by thread: Re: dropbox security situation
Next by thread: Re: dropbox security situation
Index(es):
- Date
- Thread