geni wrote:
On 4/16/07, gjzilla@gmail.com gjzilla@gmail.com wrote:
STEP 1: USE A PASSWORD WITH A COMBINATION OF LETTERS, NUMBERS, AND SYMBOLS.
Fails to provide protection against key logging and in transit interception.
These are useless against an inactive account since by definition the user isn't logging in any more.
Really, if adminship is so valuable to vandals and Wikipedia's passwords so vulnerable to attack, why hasn't an admin account ever been hijacked before? This entire line of reasoning seems a bit paranoid to me.