[1780] in WWW Security List Archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Is password good enough?

daemon@ATHENA.MIT.EDU (Adam Shostack)
Thu Apr 4 10:25:46 1996

From: Adam Shostack <adam@lighthouse.homeport.org>
To: jazayeri@hpcc117.corp.hp.com (Mariam Jazayeri)
Date: Thu, 4 Apr 1996 07:27:39 -0500 (EST)
Cc: www-security@ns2.rutgers.edu
In-Reply-To: <199604032134.AA092837277@hpcc117.corp.hp.com> from "Mariam Jazayeri" at Apr 3, 96 01:34:36 pm
Errors-To: owner-www-security@ns2.rutgers.edu

Mariam Jazayeri wrote:

| I would like to know if this group feels password is sufficient for
| protecting sensitive information on Web inside the firewalls. 
| I know most document servers provide password protection, but I'm not sure if
| that's good enough to protect sensitive information on the Web? 

How many people are inside the firewall?

Are all of them trustworhty?  If not, resniffable passwords aren't
enough.

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1780] in WWW Security List Archive

Re: Is password good enough?

daemon@ATHENA.MIT.EDU (Adam Shostack)Thu Apr 4 10:25:46 1996

daemon@ATHENA.MIT.EDU (Adam Shostack)
Thu Apr 4 10:25:46 1996