This is the
talk page for discussing improvements to the
Password article. This is not a forum for general discussion of the article's subject. |
Article policies
|
Find sources: Google ( books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL |
Archives:
1Auto-archiving period: 365 days
![]() |
![]() | This ![]() It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||
|
I've removed some information about biometrics from the article as it wasn't really about passwords, I'll be moving it to a new article about user identification. -- Imran 00:50, 10 Jan 2004 (UTC)
The article said it was "sensible" for the system to give the user a randomly generated password. Please don't write such things. Don't treat the users as pawns that exist to serve the computer system. It is the other way round. Sorry for venting. Been bitten by this attitude more than once in real life.
Anyway the above is just one example of the fact that this article has a non-obvious type of POV: a security-POV. It assumes that the computer security is the most important thing in the world and everything else is secondary. A perfect example is the last paragraph: If even the smallest possibility exists that the password has become known to anyone other than those to whom it 'belongs', it should be considered compromised, and immediately changed. This is obviously never the case in reality, for no-one can expend infinite amounts of resourced in securing computers, and there's always a tradeoff between the level of security you get and users' productivity.
I'm starting to get the feeling that many other security articles also have this POV. It is no more acceptable than other types of POV, and needs to be fixed. -- Arvindn 03:54, 18 Apr 2004 (UTC)
I removed the following text:
I don't think this is good advice. If you have a list of passwords and non-passwords, you are dramatically reducing the number of passwords that need to be checked. "Never write down a password" is better and more straightforward advice. -- Huppybanny 21:54, Aug 16, 2004 (UTC)
Perhaps we should mention diceware?
This is the best system for producing a strong password:
The only drawback of diceware is that the passwords are quite long. They take longer to type. So it works best for high-security situations (such as protecting a private PGP key).
This is my first time contributing to Wikipedia. I want to make sure I don't step on anyone's toes. Would it be alright if I add a Wiki page about diceware and then add a section to the Password page about diceware?
It appears that Microsoft's Jesper Johanssen thinks that users should write down passwords. See [2]. Perhaps we should note this? - Ta bu shi da yu 07:24, 9 Jun 2005 (UTC)
I take it that the password was named after the popular game show? Or is this an urban legend? Are there any known uses of the word prior to the early 60s? MightyArms ( talk) 22:15, 7 March 2023 (UTC)
The article begins with "A password, sometimes called a passcode (for example in Apple devices), ..." which suggests that Apple uses passcode as a synonym for password. That is not the case. An Apple iCloud account has a username and password while the unlock code for a iPhone is a passcode. An iphone passcode is not paired with a username or email.
Passwords, passcodes, and PINs are all secrets used for authentication, but are different in how and where they are used. 96.233.106.58 ( talk) 21:04, 10 October 2023 (UTC)
Might be useful to add some details about that. Wisdood ( talk) 16:53, 26 October 2023 (UTC)
This is the
talk page for discussing improvements to the
Password article. This is not a forum for general discussion of the article's subject. |
Article policies
|
Find sources: Google ( books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL |
Archives:
1Auto-archiving period: 365 days
![]() |
![]() | This ![]() It is of interest to the following WikiProjects: | |||||||||||||||||||||||||||||||
|
I've removed some information about biometrics from the article as it wasn't really about passwords, I'll be moving it to a new article about user identification. -- Imran 00:50, 10 Jan 2004 (UTC)
The article said it was "sensible" for the system to give the user a randomly generated password. Please don't write such things. Don't treat the users as pawns that exist to serve the computer system. It is the other way round. Sorry for venting. Been bitten by this attitude more than once in real life.
Anyway the above is just one example of the fact that this article has a non-obvious type of POV: a security-POV. It assumes that the computer security is the most important thing in the world and everything else is secondary. A perfect example is the last paragraph: If even the smallest possibility exists that the password has become known to anyone other than those to whom it 'belongs', it should be considered compromised, and immediately changed. This is obviously never the case in reality, for no-one can expend infinite amounts of resourced in securing computers, and there's always a tradeoff between the level of security you get and users' productivity.
I'm starting to get the feeling that many other security articles also have this POV. It is no more acceptable than other types of POV, and needs to be fixed. -- Arvindn 03:54, 18 Apr 2004 (UTC)
I removed the following text:
I don't think this is good advice. If you have a list of passwords and non-passwords, you are dramatically reducing the number of passwords that need to be checked. "Never write down a password" is better and more straightforward advice. -- Huppybanny 21:54, Aug 16, 2004 (UTC)
Perhaps we should mention diceware?
This is the best system for producing a strong password:
The only drawback of diceware is that the passwords are quite long. They take longer to type. So it works best for high-security situations (such as protecting a private PGP key).
This is my first time contributing to Wikipedia. I want to make sure I don't step on anyone's toes. Would it be alright if I add a Wiki page about diceware and then add a section to the Password page about diceware?
It appears that Microsoft's Jesper Johanssen thinks that users should write down passwords. See [2]. Perhaps we should note this? - Ta bu shi da yu 07:24, 9 Jun 2005 (UTC)
I take it that the password was named after the popular game show? Or is this an urban legend? Are there any known uses of the word prior to the early 60s? MightyArms ( talk) 22:15, 7 March 2023 (UTC)
The article begins with "A password, sometimes called a passcode (for example in Apple devices), ..." which suggests that Apple uses passcode as a synonym for password. That is not the case. An Apple iCloud account has a username and password while the unlock code for a iPhone is a passcode. An iphone passcode is not paired with a username or email.
Passwords, passcodes, and PINs are all secrets used for authentication, but are different in how and where they are used. 96.233.106.58 ( talk) 21:04, 10 October 2023 (UTC)
Might be useful to add some details about that. Wisdood ( talk) 16:53, 26 October 2023 (UTC)