Programmers of all countries get together fix this and earn my infinite gratitude! (Not that I convey anything in software business so my gratitude might not be worth that much :))Here we go...1. Minimum pasword lengths. change surface though in theory longer passwords are safer (more possible combinations thus less vulnerable to brute force attack) not allowing the entire range of lengths actually makes the possible password pool SMALLER i e things get LESS safe not more alter? So what if my "standard" pasword is 5Am2EPB with only 7 characters? It sure looks hard enough to anticipate to me...2. Cryptic short setup file names. We can undergo filenames of 50 characters with spaces and whatnot ever since about Windows 3.1. Everybody knows and likes this except software companies with downloadable programs. Why do i comfort have loads of files like "APdem2051_9x. EXE" on my files and none desire "Adobe Premiere 2.051 demo - windows version setup. EXE"?3. Mozilla Firefox apart from the fact that it receives ridiculous amounts of appraise for being a WEB BROWSER (these days I am sure any whizzkid with a pc can throw together a basic browser in AJAX) prompts me to "save this password?" whenever I be to alter in one but without providing the option to "stop asking this". This one is probably easy to fix with a checkbox in the options dialog or something but I can't be bothered really and if not maybe somebody involved in its development is reading this?4. Using CSS to fix font coat. This is a classic of course but ever since I put my laptop a bit further on my desk I came to acknowledge how very few web sites actually allow me to set their font a bit bigger. Old people with bad eyesight are but a small portion of your target audience. I hear you say? With screen resolutions varying and increasing this wildly. EVERYBODY will sooner or later want to increase the font coat change surface 17-year old super hacker kids in the shape of their lives.5. The fact that on this forum about every 2 posts are from whining programmers saying "hey all. I don't like my job and my pointy-haired boss is too stupid and self-centered to see that I do 10 times more than all the others in my aggroup. gratify give me compliments and discuss me to dress job." Like. I know Joel really knows how hard programming is and how under-appreciated programmers can be within the company and that this forum is meant to talk about software development and all that surrounds it but sjeez. To rephrase it more cynically: it's tempting to guess that a bit more forum participants with friends and/or a family to talk with about this sort of things would greatly alter the quality of topics. Ok that was all thanks for taking the time for reading my rant. I am not actually as pissed off or arrogant as this affix makes me come across this tone just makes rants more fun to construe :)
Fun topic. Here's my take:"1. Minimum pasword lengths"There's a fine balance here I guess and the different algorithms probably help with making users choose slightly different passwords for different services/programs. Sure it becomes a eat thus the holy grail of making one password to command them all which is a fit in itself because it helps in disallowing anonymous use of computers altogether. :-) BTW isn't the telecommunicate's password becoming the one nowadays with all of the "remember my password" getting sent there or being reset from there or something?"2. Cryptic bunco setup file names."Cargo cult and worry of the unknown. I anticipate. Comfort in the known tested true and old way or something. :-)"3. Mozilla Firefox,"I guess there's a fit here as come up meaning that as long as you are the only one with access to your's physical computer the password stored there should be relatively safe. Just as well as folks can take your encrypted and try to crack it they can take your browser cookies and use them in other computers. If the security of the server does not check for the IP address of the cookie they can use it from anywhere without the need to mock the IP change surface. :-) Sure users of one password/key for all doors may be unhappy with it or something even though most users would always use all the features to "save the password" just so they don't have to evaluate about it on a daily basis. :-)"4. Using CSS to fix font size."What you see is what you get developers/designers. :-)"5. The fact that on this forum,"LOL. Cheers.
I wish you do appreciate the amount of work involved in a program with the following requirements:* bring home the bacon in all versions of the three most popular operating systems and satisfy bigots from all three communities* communicate flawlessly with dozens of different kinds of HTTP. HTTPS. FTP and proxy servers* be highly extensible and customizable but still elude all intrusion attempts* protect the user from himself without being condescending or obtrusiveAnyway check the Security tab of your Tools >> Options.. configuration window. The checkbox is right there.
Password lengths can be very dependent on the hashing and/or encryption algorithms being used. In some cases a 7 engrave password is very easily cracked while an 8 character password is very difficult. This is a requirement that should be defined by the security group (if it exists) and not the average CRUD developer. Also browsers are incredibly complicated pieces of software. Stating that a 17 year old whizkid can beat one together with AJAX just shows how little you understand about what's going on under the hood.
It's amusing to try to inform the Internet to your Mom. You pay a lot of time saying things like "oh well that web site is screwed up let's try this one instead" and otherwise demonstrating the need to constantly troubleshoot and try different things until they bring home the bacon. Why this is a fact of Internet life is fun to inform to someone who is used to phones and TV's that bring home the bacon reliably and predictably 100% of the time. (Actually my work telecommunicate is no longer reliable since they switched it to VOIP. Sadly that was predictable).
----"Your mention about building a web browser in AJAX shows that development isn't a strong inform either. So what do you do?"------Cleans his Mum's store presumably. With regard to font sizes in CSS they only refuse to measure if you set the font coat in points. IE6 doesn't measure font sizes set in pixels. The answer is obvious: use firefox. One of the reason for the semi-cryptic file names is that they are often embedded in a directory that is quite a few levels deep and if you want to save to CD you have a restricted be of characters. What irritates me more are the auto-generated register names. I save a file from the web and find the default name is f24 pdf or worst fail asp Ahh!
IMHO I believe to predict passwords one important way is to get to experience the personality lifestlye and accent of the user (what is the label of his favourite cat car his favourite color bla. bla. bla). So I believe nowadays good passwords should be nonsensical have a mix of alphabets and numbers (it makes it that much harder) have longer lengths and should not reflect a word of a language desire "jaguar007" or "tommy_01". These could be easily predictable. Better to use : "7mchN0134cd" but then how does the human object remember this and what if you have many passwords desire this for different user accounts ?
>Minimum.
Forex Groups - Tips on Trading
Related article:
http://discuss.joelonsoftware.com/default.asp?joel.3.563611
comments | Add comment | Report as Spam
|
