password requirements Archives - The Silicon Underground David L. Farquhar on technology old and new, computer security, and more Sat, 06 Jun 2026 17:15:16 +0000 en-US hourly 1 https://kerosin.digital/rss-chimp16321610 Why I don’t scan networks with my own credentials https://dfarq.homeip.net/why-i-dont-scan-networks-with-my-own-credentials/?utm_source=rss&utm_medium=rss&utm_campaign=why-i-dont-scan-networks-with-my-own-credentials https://dfarq.homeip.net/why-i-dont-scan-networks-with-my-own-credentials/#comments Tue, 03 Mar 2015 11:00:53 +0000 https://dfarq.homeip.net/?p=7611 I scan the network I’m paid and sworn to protect on a nearly daily basis. I experienced a problem with the account I use for that, and I tested by scanning a small quantity of machines (my own and my cubicle

The post Why I don’t scan networks with my own credentials appeared first on The Silicon Underground.

]]> https://dfarq.homeip.net/why-i-dont-scan-networks-with-my-own-credentials/feed/ 2 7611 When your CISSP isn’t enough https://dfarq.homeip.net/when-your-cissp-isnt-enough/?utm_source=rss&utm_medium=rss&utm_campaign=when-your-cissp-isnt-enough Wed, 24 Apr 2013 11:00:04 +0000 https://dfarq.homeip.net/?p=6552 I had a job interview Monday. I have at least one observation from it–the things on my resume that impress recruiters don’t necessarily impress a good hiring manager. Not on their own, at least. Let’s do some post-mortem. Here’s something

The post When your CISSP isn’t enough appeared first on The Silicon Underground.

]]> 6552 Although it’s counterintuitive, AT&T’s new password policy makes sense https://dfarq.homeip.net/although-its-counterintuitive-atts-new-password-policy-makes-sense/?utm_source=rss&utm_medium=rss&utm_campaign=although-its-counterintuitive-atts-new-password-policy-makes-sense Thu, 04 Apr 2013 12:13:19 +0000 https://dfarq.homeip.net/?p=6502 AT&T has a new password policy that forbids the use of certain common words in passwords, including some words of a colorful nature. Yes, it reduces the number of possible passwords, but that isn’t exactly a bad thing. What they

The post Although it’s counterintuitive, AT&T’s new password policy makes sense appeared first on The Silicon Underground.

]]> 6502 The problem with dictionary passwords https://dfarq.homeip.net/the-problem-with-dictionary-passwords/?utm_source=rss&utm_medium=rss&utm_campaign=the-problem-with-dictionary-passwords Mon, 11 Feb 2013 10:00:19 +0000 https://dfarq.homeip.net/?p=6344 Consulting firm Deloitte is warning that 8-character passwords will be obsolete this year. Sound familiar? Of course, the Slashdot crowd blamed it as security “experts” (their words) creating hype to make money. Well, I’m a certified security professional who doesn’t

The post The problem with dictionary passwords appeared first on The Silicon Underground.

]]> 6344 Some lessons from cracking the compromised Linkedin password database https://dfarq.homeip.net/some-lessons-from-cracking-the-compromised-linkedin-password-database/?utm_source=rss&utm_medium=rss&utm_campaign=some-lessons-from-cracking-the-compromised-linkedin-password-database https://dfarq.homeip.net/some-lessons-from-cracking-the-compromised-linkedin-password-database/#comments Tue, 12 Jun 2012 12:15:10 +0000 https://dfarq.homeip.net/?p=5616 Here’s a blow-by-blow account of a security researcher’s attempts to crack the compromised Linkedin database as a result of its 2012 breach. This is a very good example of ethical hacking. It’s good to get into the mind of someone

The post Some lessons from cracking the compromised Linkedin password database appeared first on The Silicon Underground.

]]> https://dfarq.homeip.net/some-lessons-from-cracking-the-compromised-linkedin-password-database/feed/ 6 5616