rename -> *.git

[irc.git] / software / RELEASES / ircservices / achurch.org / services / lists / ircservices / 2001 / 001646.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
 <HEAD>
   <TITLE> [IRCServices] Re: [Andy Smith - IRCServices]
   </TITLE>
   <LINK REL="Index" HREF="index.html" >
   <LINK REL="made" HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20Re%3A%20%5BAndy%20Smith%20-%20IRCServices%5D&In-Reply-To=">
   <META NAME="robots" CONTENT="index,nofollow">
   <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
   <LINK REL="Previous"  HREF="001644.html">
   <LINK REL="Next"  HREF="001647.html">
 </HEAD>
 <BODY BGCOLOR="#ffffff">
   <H1>[IRCServices] Re: [Andy Smith - IRCServices]</H1>
    <B>Strider</B> 
    <A HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20Re%3A%20%5BAndy%20Smith%20-%20IRCServices%5D&In-Reply-To="
       TITLE="[IRCServices] Re: [Andy Smith - IRCServices]">strider at chatcircuit.com
       </A><BR>
    <I>Mon Mar 19 17:03:00 PST 2001</I>
    <P><UL>
        <LI>Previous message: <A HREF="001644.html">[IRCServices] Re: [Andy Smith - IRCServices]
</A></li>
        <LI>Next message: <A HREF="001647.html">[IRCServices] Re: [Andy Smith - IRCServices]
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#1646">[ date ]</a>
              <a href="thread.html#1646">[ thread ]</a>
              <a href="subject.html#1646">[ subject ]</a>
              <a href="author.html#1646">[ author ]</a>
         </LI>
       </UL>
    <HR>  
<!--beginarticle-->
<PRE>You need to keep in mind that not every Tom Dick and Harry is the most
computer literate person in the world or knows about making good passwords.
Many people try to make passwords they can remember, like the name of their
dog, their address, etc etc. It is very bad practice, but there is no way to
just go out to the world and tell everyone their password is insecure, blah
blah blah. Am I not right? I do try to tell my users to use strong
passwords. Some do, some don't. You don't just abandone those who chose not
to, because that is the majority, whether we like it or not.

If any feel this is a big issue and want it fixed, I suggest making a logon
news, motd entry, and a web page for your irc server stating the fact you
want your users to make strong passwords. This will NOT force every single
user to do so, so don't be surprised if it doesn't even work.

Suggestion on a feature:
Allow services to make a randomly generated password. Perhaps /msg nickserv
register RANDOM email would do it rather than set it to random. Since the
services does reply to you with the password you entered, the user has a
chance to write down the password.

Beau (Strider) Steward
chatcircuit administrator and 6bit band member
<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">strider at chatcircuit.com</A>        www.chatcircuit.com
<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">ircadmin at chatcircuit.com</A>     irc.chatcircuit.com
<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">strider at 6bit.net</A>                    www.6bit.net
----- Original Message -----
From: &quot;Andy Smith&quot; &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">andy at strugglers.net</A>&gt;
To: &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">ircservices at ircservices.za.net</A>&gt;
Sent: Monday, March 19, 2001 8:20 AM
Subject: Re: [IRCServices] Re: [Andy Smith - IRCServices]


&gt;<i> On Sun, 18 Mar 2001 17:42:52 +0200, Partizanu &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">silvius at expres.ro</A>&gt; wrote:
</I>&gt;<i>
</I>&gt;<i> &gt;Imagine this:
</I>&gt;<i> &gt;Some user, let`s say Guest007 come to you and say:
</I>&gt;<i> &gt;- Hello my dear services admin! I have a problem. User BadGuest stole my
</I>password
&gt;<i> &gt;and I want my nick back. Can you do something about this?
</I>&gt;<i>
</I>&gt;<i> In this situation, BadGuest was given the password by the user, or else
</I>the
&gt;<i> user did something to allow BadGuest to easily guess it.  That is the
</I>user's
&gt;<i> problem.
</I>&gt;<i>
</I>&gt;<i> The other slim possibility is that the IRC network itself has someone
</I>&gt;<i> sniffing passwords on it.  That is a problem that needs to be solved, and
</I>no
&gt;<i> part of services can solve it for you.
</I>&gt;<i>
</I>&gt;<i> The vast majority of &quot;password stealing&quot; incidents are down to users
</I>sharing
&gt;<i> their passwords.
</I>&gt;<i>
</I>&gt;<i> --
</I>&gt;<i> Andy Smith &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">andy at strugglers.net</A>&gt;
</I>&gt;<i>
</I>&gt;<i> -----------------------------------------------------------
</I>&gt;<i> To unsubscribe, mail <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">ircservices-request at ircservices.za.net</A>
</I>&gt;<i> with the word UNSUBSCRIBE in the subject of the mail.
</I>&gt;<i> <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">http://www.ircservices.za.net/mailman/listinfo/ircservices</A>
</I>&gt;<i>
</I>


</PRE>

<!--endarticle-->
    <HR>
    <P><UL>
        <!--threads-->
        <LI>Previous message: <A HREF="001644.html">[IRCServices] Re: [Andy Smith - IRCServices]
</A></li>
        <LI>Next message: <A HREF="001647.html">[IRCServices] Re: [Andy Smith - IRCServices]
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#1646">[ date ]</a>
              <a href="thread.html#1646">[ thread ]</a>
              <a href="subject.html#1646">[ subject ]</a>
              <a href="author.html#1646">[ author ]</a>
         </LI>
       </UL>

</body></html>