geni wrote:
On 4/16/07, gjzilla(a)gmail.com
<gjzilla(a)gmail.com> wrote:
STEP 1: USE A PASSWORD WITH A COMBINATION OF
LETTERS, NUMBERS, AND SYMBOLS.
Fails to provide protection against key logging and in transit interception.
These are useless against an inactive account since by definition the
user isn't logging in any more.
Really, if adminship is so valuable to vandals and Wikipedia's passwords
so vulnerable to attack, why hasn't an admin account ever been hijacked
before? This entire line of reasoning seems a bit paranoid to me.