On 7/5/05, Rowan Collins <rowan.collins(a)gmail.com> wrote:
Not really - it's no easier to guess than your
"real" one (probably
harder, unless you're paranoid enough to use properly pseudo-random
strings rather than something vaguely word or number like), and only
you ever knew it.
I use a random password, taken from /dev/random. I highly recommend
it; it's just as easy to remember and much safer.
Since exactly one random password + one
"real" password can be active
at any time, it's equivalent to halving the odds of picking the right
one randomly.
Not quite. The random password has been sent out by email, so it is
stored and archived who-knows-where.