|
List Info
Thread: E-mail passwords
|
|
| E-mail passwords |
|
2006-11-15 23:22:37 |
I find that most users require about five attempts to come
up with a
password that satisfies all of the rules for CalMail
passwords.
I have seen users who need more than five minutes to
complete this
task. Seriously -- five real minutes.
If I'm walking someone through the process, I pre-warn them
that they
will most likely fail their first several attempts. This
avoids the
potentially socially awkward situation of a user failing
repeatedly
at what appears to be a simple task. I think it also helps
reduce
anxiety as they repeatedly fail. I get the sense that
reducing user
anxiety in this way probably increases the likelihood of
solving the
puzzle.
-Greg
------------------------------------------------------------
------------
The following was automatically added to this message by the
list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.be
rkeley.edu/>.
|
|
| E-mail passwords |
|
2006-11-16 00:11:51 |
I always tell users to think of a word that they will
remember, then
put "." in between each letter. Example:
o.s.k.i.b.e.a.r
As long as it is 8 characters or longer, it works every
time.
Bernie
At 3:22 PM -0800 11/15/06, Greg Merritt wrote:
>I find that most users require about five attempts to
come up with a
>password that satisfies all of the rules for CalMail
passwords.
>
>I have seen users who need more than five minutes to
complete this
>task. Seriously -- five real minutes.
>
>If I'm walking someone through the process, I pre-warn
them that
>they will most likely fail their first several attempts.
This
>avoids the potentially socially awkward situation of a
user failing
>repeatedly at what appears to be a simple task. I think
it also
>helps reduce anxiety as they repeatedly fail. I get the
sense that
>reducing user anxiety in this way probably increases the
likelihood
>of solving the puzzle.
>
>-Greg
>
>
>--------------------------------------------------------
----------------
>The following was automatically added to this message by
the list server:
>
>For information about Micronet, including subscribing to
>or unsubscribing from its mailing list and finding out
>about upcoming meetings, please visit the Micronet Web
site:
><http://micronet.be
rkeley.edu/>.
------------------------------------------------------------
------------
The following was automatically added to this message by the
list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.be
rkeley.edu/>.
|
|
| E-mail passwords |
|
2006-11-16 00:43:08 |
On Wed, November 15, 2006 15:22, Greg Merritt wrote:
>
> I find that most users require about five attempts to
come up with a
> password that satisfies all of the rules for CalMail
passwords.
One possible reference to which you might try directing
your users:
"How do I set strong passwords for all of the
accounts on my computer?"
https://kb.berkeley.edu
/kb905
Although this IST Knowledge Base document is written in
the context of
host account passwords, these password tips - or a variant
of them -
should likely also be helpful as a way to come up with
memorable and
rules-compliant CalMail passwords, CalNet passphrases, and
the like.
Aron Roberts
Information Systems and Technology
------------------------------------------------------------
------------
The following was automatically added to this message by the
list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.be
rkeley.edu/>.
|
|
| E-mail passwords |
|
2006-11-16 01:29:37 |
|
At 4:43 PM -0800 11/15/06, Aron Roberts wrote:
One possible reference to which you might try directing your
users:
"How do I set strong passwords for all of the accounts on
my computer?"
https://kb.berkeley.edu/kb905
Although this IST Knowledge Base document is written in the
context of
host account passwords, these password tips - or a variant of them
-
should likely also be helpful as a way to come up with memorable
and
rules-compliant CalMail passwords, CalNet
passphrases, and the like.
I don't think this is what you're suggesting, but just in case it
is, I would point out that one generic problem with having a single
person give out passwords (or maybe even hints) to multiple users
inevitably leads to some consistent formula that ultimately
compromises security.
Example #1: When I was a grad student here several years
ago, my department (whose name shall not be disclosed) gave me a
password for something (Calnet?) that was "*********Radwin."
(Radwin is my last name; the asterisks represent some text that I
obviously can't reveal.) A couple of years later, when I was a GSI for
Professor "Smith," he gave me his password for entering
grades (also possibly through Calnet, but I don't remember). It was
"*********Smith." I could pretty much guess what the
password was for Professor Jones or Professor Miller would be.
Example #2: I was recently given a password as the
Berkeley representative for a UC-wide project. The password was
"ucb********". Guess what, say, UCLA's and UCSD's passwords
are?
I wish I had some specific suggestion aside from the admonition
not to do what these administrators did, but I don't.
David
--
David Radwin, Principal Analyst // radwin berkeley.edu
Office of Student Research, University of California, Berkeley
2223 Fulton St # 2032, Berkeley, CA 94720-2032
Tel. 510.642.2097; Fax 510.642.2894 |
[1-4]
|
|
|
about | contact Other archives ( Real Estate discussion Medical topics )
|