[NBLUG/Announce] TONIGHT - Sex, Secret and God: A Brief History of Bad Passwords (Kyle Rankin)

Allan Cecil allan at nblug.org
Tue May 9 19:37:00 PDT 2017


There are a few people who cannot make it tonight so I've started a live stream on my channel at http://twitch.tv/dwangoAC if you want to join remotely.  Enjoy,

A.C.
******
President, North Bay Linux Users' Group

On 05/09/2017 12:07 PM, Allan Cecil wrote:
> This is a much needed topic if the discussion in the talk list is any indication.  Come one come all tonight at 7:30,
> 
> A.C.
> ******
> President, North Bay Linux Users' Group
> 
> On 04/18/2017 03:05 PM, Allan Cecil wrote:
>> Topic: Sex, Secret and God: A Brief History of Bad Passwords
>> When: Tuesday May 9th, 7:30 PM to 9:00 PM
>> Speaker: Kyle Rankin
>>
>> Location: O'Reilly Media, Sebastopol CA in the Tarsier conference room
>> past the metal statue and to the right ( http://nblug.org/locations )
>>
>> Description:
>> Most of what we've been told over the years about what makes a good
>> password has been wrong, so it's no surprise most people pick bad
>> passwords. This talk will cover the history of password policy and password
>> cracking starting from the days when Richard Stallman hacked the passwords
>> forced on his MIT computer lab because he considered passwords an
>> authoritarian method of control. Next I'll discuss the golden days of
>> password guessing featured prominently in movies like Hackers and WarGames.
>>
>> Then I'll move to the tech boom and the introduction of draconian IT
>> policies like password rotation and password complexity and the dirty
>> little leet-speak password secrets they led to. As we get closer to the
>> modern day I'll discuss the "correct horse battery staple" password
>> renaissance and more modern approaches to password cracking spawned by
>> tools like oclhashcat and giant password databases dumps like the RockYou
>> hack.
>>
>> I'll finish up with modern attempts to fix the password auth problem such
>> as new approaches to secure password generation in password managers or
>> schemes such as diceware as well as cover password auth reinforcements like
>> the different forms of 2FA (including U2F) and Facebook's new approach to
>> "I forgot my password" workflows. By the end everyone should have plenty of
>> ammunition to take back to their IT department and get rid of those
>> horrible password policies.
>> _______________________________________________
>> announce mailing list
>> announce at nblug.org
>> http://nblug.org/cgi-bin/mailman/listinfo/announce
>>
> _______________________________________________
> announce mailing list
> announce at nblug.org
> http://nblug.org/cgi-bin/mailman/listinfo/announce
> 


More information about the announce mailing list