Comments on: Passwords http://www.thespanner.co.uk/2007/05/11/passwords/ Javascript blog with messed up syntax inside Thu, 26 Jan 2012 01:38:34 +0000 hourly 1 By: Gareth Heyes http://www.thespanner.co.uk/2007/05/11/passwords/#comment-154 Gareth Heyes Mon, 14 May 2007 08:19:26 +0000 http://www.thespanner.co.uk/2007/05/11/passwords/#comment-154 @ambush commander Yes of course I could have encrypted the data but as I said in the post I did it because I couldn't sleep not to write a full comprehensive solution. The idea in my head enabled the user to remember a small pin number but provide enough security that their account couldn't easily be compromised. The system could also prevent Phishing using browser clipboard checks; I've released the code/concept as GPL so anyone can improve it. Agreed I will change the plugin I wrote to warn javascript is required. @ambush commander

Yes of course I could have encrypted the data but as I said in the post I did it because I couldn’t sleep not to write a full comprehensive solution. The idea in my head enabled the user to remember a small pin number but provide enough security that their account couldn’t easily be compromised.

The system could also prevent Phishing using browser clipboard checks; I’ve released the code/concept as GPL so anyone can improve it.

Agreed I will change the plugin I wrote to warn javascript is required.

]]> By: Ambush Commander http://www.thespanner.co.uk/2007/05/11/passwords/#comment-153 Ambush Commander Fri, 11 May 2007 18:38:18 +0000 http://www.thespanner.co.uk/2007/05/11/passwords/#comment-153 By the way, you should probably warn your users that JavaScript is required to use the comment forms, as well as the fact that their comment won't show up immediately due to moderation. By the way, you should probably warn your users that JavaScript is required to use the comment forms, as well as the fact that their comment won’t show up immediately due to moderation.

]]> By: Ambush Commander http://www.thespanner.co.uk/2007/05/11/passwords/#comment-152 Ambush Commander Fri, 11 May 2007 18:11:44 +0000 http://www.thespanner.co.uk/2007/05/11/passwords/#comment-152 If you're going to go as far as suggesting text keys and browser support, why not go the whole kaboodle and have browser implement public key authentication like SSH? If you’re going to go as far as suggesting text keys and browser support, why not go the whole kaboodle and have browser implement public key authentication like SSH?

]]>