Re: Password Pride - A Humorous Vulnerability

["Melissa " <missy.augustine () gmail com>]

I think Brits get some special powers over here in the states becuase
of their accent. My friend got accosted in a hotel in Missouri by 4
female employees because of his english accent. We are crazy for it
apparantly!

Considering it seems like you were in San Fran during the RSA
conference, where hackers/geeks/IT specialists abound, the man was
lucky to spill the beans to an ethical person.. Of course, if he will
say it to one person - who knows who else he talked to!

On 1/19/07, Dixon, Wayne <wcdixo () aurora lib il us> wrote:
> So you mean, I shouldn't  put this into my latest PHP project?  Oh
> man... I was looking forward to giving my passwords out...  I'll have to
> go and find something else to do...
>
> Maybe I'll destroy some USB memory sticks or something....
>
> Wayne
>
>
>
>
>
> -----Original Message-----
> From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
> On Behalf Of Marcus Valsecchi
> Sent: Thursday, January 18, 2007 1:34 PM
> To: security-basics () securityfocus com
> Subject: ENC: Password Pride - A Humorous Vulnerability
>
>
>
> Try this, just for some laughs. This one is a classic, btw. Print a sign
> with this: "Password creativity (or strength, or whatever suits you)
> Contest! We are awarding a *put a prize here* for the *put a number
> here* most creative/strong/whatever *desired account type* passwords!
> Just write down your login name and password, put it in this box down
> here, and the prize can be yours!"
>
> You got the idea. Especially suited for college/high school
> environments. Don't try this at home kids.
>
>
> On 1/18/07, Miguel Valentin <valentinousn () verizon net> wrote:
> > I would say you just encountered another moron that doesn't belong in
> > the I/T field!!
>
>
> lol...
> it happnes and it can happen to you as well :-p
> next time be carefull when you will talk to someone ;)
>
> >
> > -----Original Message-----
> > From: listbounce () securityfocus com
> > [mailto:listbounce () securityfocus com]
> On
> > Behalf Of andy cuff
> > Sent: Monday, January 15, 2007 12:26 PM
> > To: security-basics () securityfocus com
> > Subject: Password Pride - A Humorous Vulnerability
> >
> > I thought I'd share a recent observation with the list.
> >
> > I was in a bar in San Francisco where my English accent has a habit of
>
> > stimulating conversation with total strangers, in this case it was
> > with a webmaster (sadly not webmistress) of a dubious website hosted
> > in Amsterdam (I don't think I need to expand on the nature of the
> > site;)  I mentioned that
> I
> >
> > was passionate about Information Security, whereupon, he proceeded to
> > tell me his root password, as he was so proud about how hard it would
> > be to crack! If
> > this was an isolated incident I wouldn't mention it.  However, these
> > instances
> > are becoming ever more frequent, is it my trustworthy face or are
> others
> > experiencing similar errors of judgement?
> >
> > Best Regards
> >
> > --
> > Andy Cuff
> > Computer Network Defence Ltd
> > www.SecurityWizardry.com
> >
> >
> >
> >
> >
> >
>
>
> --
> ---------------------------------------
> http://www.secgeeks.com
> get a blog on secgeeks :)
> register here:-
> http://secgeeks.com/user/register
> rss feeds :-
> http://secgeeks.com/node/feed
> Submit you security articles,send them to secgeek () secgeeks com
>
> http://www.newskicks.com
> Submit and kick for new stories from all around the world.
> ---------------------------------------


--
- Melissa Augustine
"maybe it's a user problem"