On 16/08/17 05:45 AM, Andreas Mahel wrote:
So I can use a web generator via Tor. Good luck them finding me :-P
I don't think the problem lies in the password being traceable back to you. It's more the possibility that the password could end up in a dictionary, or hashes of the pw could be entered in some rainbow tables, thus providing an easy way to crack it. That would make a complex and hard to remember password just a bit too insecure...
If we are going to be that paranoid.... We are all aware of the hacks that are based on HTML email that prompts you to check your bank account but actually is a link to a rouge site. The rogue site presents you with a login page that looks exactly the same as the banks. You enter your ID and password and it says '!FAIL!" and redirects you to the real one, where you try again succeed and everything looks copacetic, so you have no suspicions. But along the way they have a record of your login id and password. Variations on this involving the password generator, password strength or some kind of front-end shim might be of varying difficulty to implement, but hackers have shown a great deal of creativity and ingenuity, and corporations have shown a great deal of stupidity and intransigence. I'm seeing front page articles in IT news reporting that major corporations are still not fixing defences against WannCry or even much older malware. One might say "a pox on them" if one were of a Shakespearian ilk, but if I were to use a 2oth or 21st century idiom this mail would probably get filtered out and I might get banned. But you now what I mean. The problem is that their customers are the one that would suffer for this shortcoming. Their customers are the ones whose accounts get ravaged, suffer actual loss, get identities stolen and all that means. The corporations, even if they are serious financial concerns, get a slap on the proverbial wrist, a fine, the cost of which they pass along to their customers, and if the stock price is affected it it a passing glitch. Demonstrating on the streets, even at the multi-million turn-out level, isn't going to affect this sort of thing. https://www.newyorker.com/magazine/2017/08/21/is-there-any-point-to-protesti... What? Off-topic? OK. -- A: Yes. > Q: Are you sure? >> A: Because it reverses the logical flow of conversation. >>> Q: Why is top posting frowned upon? -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org