have they? Good question...we didnt let it run long enough to find out. We had a rus sian hacker on one of ours servers, running some sort of cracking program. Not to crack ours, just using the CPU power. ---------------------------------------------------------------------- Keith wrote: Does anyone actually have any hard facts about proven password hacking in the real world? Does it actually happen? I have looked for evidence and not found anything more that lots of would's and coulds. No lists of documented compromised computers. And by the way, Kevin Mitnick (the Atr of deception) never ever cracked a password. He got the user to enter it for him, so a stong password did nothing. Having a strong password pasted on the front of your computer is useless IMHO. Use a decent password and don't tell anyone or write it down. Keith ----- Original Message ----- From: "Danny Sauer" To: "Microcontroller discussion list - Public." Sent: Monday, March 06, 2006 7:20 AM Subject: Re: [PIC] PIC based login device for PC? > Mike wrote regarding 'Re: [PIC] PIC based login device for PC?' on Mon, Mar 06 at 04:43: > > I forget exactly what the context was, but a local college mailing list where > > I used to work recently had a discussion about password lengths. The gist > > was that at a certain length (?14 chars?), the password became exponentially > > more secure, as Windows used a different method to store/encode it. > > Windows Server 2003 and XP allow a maximum password length of 127, > with a maximum minimum of 28 chars. NT/2000/98 had a maximum of 14 > chars, and used the LANManager format which converts all passwords to > uppercase. It could be that passwords over 14 chars are stored (or > compared, anyway) case-sensitively on XP/Server 2003 for backwards > compatability, but I'd bet that an environment like that would > allow truncating to 14 for backwards compatability too... > > *nix systems using old implementations of crypt() (using DES) truncate > to 8 chars though most modern systems (including modern Linuxes) take > advantage of modern crypto (often MD5 or SHA) to generate passwords > which use significantly more chars. MD5 supports 256 chars on most > systesm. Mac OS X up to version 10.2 used DES (8 chars), but switched > to MD5 in 10.3/Panther. > > --Danny > -- > http://www.piclist.com PIC/SX FAQ & list archive > View/change your membership options at > http://mailman.mit.edu/mailman/listinfo/piclist > -- http://www.piclist.com PIC/SX FAQ & list archive View/change your membership options at http://mailman.mit.edu/mailman/listinfo/piclist --------------------------------- Yahoo! Mail Bring photos to life! New PhotoMail makes sharing a breeze. -- http://www.piclist.com PIC/SX FAQ & list archive View/change your membership options at http://mailman.mit.edu/mailman/listinfo/piclist