Weak user passwords

[neddie]

Hi all,

Quick question about user passwords on a single-user box. Does it matter if the password is weak, and trivial to guess?

 

If there's only that one user who has physical access to the machine, and noone else uses it, is it paranoia to set a complex user password or is it a sensible precaution to prevent malicious attempts to login over the internet connection?

 

If I've not got a webserver running, or an ftp server, or a telnet server, is there anything else I need to check to prevent remote logins?

[devries]

It´s not a big risk but why take any chances. I find that after a few logins I remember complex passwords just as well as easy ones. Only if I hardly use a password I tend to forget it.

[tyme]

i agree with devries. complex passowrds are always a good idea, and it's good practice. if you're connected to the internet, good passwords are always a good idea.

[jaraeez]

Found this the other day Password Security This basically checks your password for strength HTH

Edited January 31, 2006 by jaraeez

[sellis]

Here's a counterexample: one of the users is 3 years old and can just about pick out his own name on the keyboard.

 

Of course, he has *very* few privileges on his account...