http://www.itworld.com/taxonomy/term/1285/all xx http://www.itworld.com/security/82690/avoiding-password-hell Some people seem to think that long, complicated passwords that change frequently are great for security. They couldn't be more wrong. http://www.itworld.com/security/82690/avoiding-password-hell#comments Endpoint security Internet Security Software Opinion password password manager Wed, 28 Oct 2009 12:11:12 -0400 sjvn 82690 at http://www.itworld.com http://www.itworld.com/security/68143/study-secret-questions-dont-safeguard-passwords Free e-mail providers often present a so-called "secret question" as a verification mechanism to reset an account password. But the answer is often easily guessable by other people who know the account holder, according to a new study to be released during the IEEE Symposium on Security and Privacy. http://www.itworld.com/security/68143/study-secret-questions-dont-safeguard-passwords#comments Security News access control authentication password Tue, 19 May 2009 13:20:22 -0400 ITworld staff 68143 at http://www.itworld.com http://www.itworld.com/security/67689/password-seeks-partner-long-term-secure-relationship Passwords have been standing guard over our computer user accounts seemingly forever; for a long while, and for most purposes, they could go it alone. But it's no secret that passwords are no longer sufficient as the sole means of granting access to critical networks, applications, and data. http://www.itworld.com/security/67689/password-seeks-partner-long-term-secure-relationship#comments Security Opinion data protection password Mon, 11 May 2009 09:17:48 -0400 ITworld staff 67689 at http://www.itworld.com http://www.itworld.com/security/59626/social-networking-security-protect-yourself If you're wading in the social networking pool, revisiting some core security principles can protect you from spammers and other characters on Facebook who can ruin your computer or identity. http://www.itworld.com/security/59626/social-networking-security-protect-yourself#comments Internet Security Feature Facebook malware MySpace password social networking Mon, 22 Dec 2008 09:58:07 -0500 ITworld staff 59626 at http://www.itworld.com http://www.itworld.com/security/58849/adobe-admits-new-pdf-password-protection-weaker Adobe made a critical change to the algorithm used to password-protect PDF documents in Acrobat 9, making it much easier to recover a password and raising concern over the safety of documents. http://www.itworld.com/security/58849/adobe-admits-new-pdf-password-protection-weaker#comments Security News Adobe content management password PDF Fri, 05 Dec 2008 12:01:21 -0500 abennett 58849 at http://www.itworld.com http://www.itworld.com/security/54290/google-tech-talk-password-reset In a recent post, I described the problems with password reset, and how current password reset questions can be attacked. Watch my recent Google Tech talk on this subject... http://www.itworld.com/security/54290/google-tech-talk-password-reset#comments Security Tech & society Research Google password reset security tech talk Fri, 15 Aug 2008 00:35:29 -0400 Markus Jakobsson 54290 at http://www.itworld.com http://www.itworld.com/tech-society/54193/beware-meta-password-reuse Think your password resets are secure? Think again. The city you grew up in and your mother's maiden name can be derived from public records. Facebook might unwittingly tell the name of your best friend. And, until quite recently, Ford with its 25% market share had a pretty good chance of being the brand of your first car! http://www.itworld.com/tech-society/54193/beware-meta-password-reuse#comments Security Tech & society Research fraud password password reset phishing Tue, 12 Aug 2008 21:22:43 -0400 Markus Jakobsson 54193 at http://www.itworld.com http://www.itworld.com/nls_unixpasswordage1 While it's clearly possible to use the /etc/passwd and /etc/shadow files in Solaris and other Unix systems without making use of the password aging features, you could be taking advantage of these features to encourage your users to practice better security -- and, with the right password aging values, you can configure a good password-changing policy into your system files while limiting the risk that your users will be locked out of their accounts. In this week's column, we look at the various fields in the shadow file that govern password aging and suggest settings that might give you the right balance between user convenience and good password security. http://www.itworld.com/nls_unixpasswordage1#comments Open Source Security How-to password Unix Wed, 05 Oct 2005 08:44:27 -0400 jnaze 12017 at http://www.itworld.com