Bob Barrows wrote on 06 mrt 2004 in
microsoft.publi c.inetserver.as p.general:
Evertjan. wrote: Alistair wrote on 06 mrt 2004 in why not generate a random password for each user??
Why not generate a random user for each password??
Perfect security !!
;-}
Unless someone gets the password from the post-it note stuck on the
user's monitor ... ;-)
That is the beauty of my scheme, Bob:
As the user is random,
your someone will never know which user a password belongs to.
The top security effect is
that even no legitimate user will be able to log on.
This effect has a triple advantage:
1 program bugs and html bugs do not have to be repaired.
2 the database does not need holding any sensitive data.
3 even Californian blackouts have no serious business disadvantages.
--
Evertjan.
The Netherlands.
(Please change the x'es to dots in my emailaddress)