From mboxrd@z Thu Jan 1 00:00:00 1970 From: erik quanstrom Date: Tue, 29 Jun 2010 14:57:23 -0400 To: 9fans@9fans.net Message-ID: <1449883d7baedf2bc03d0857a73b6a98@coraid.com> In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Subject: Re: [9fans] offered without comment or judgement Topicbox-Message-UUID: 39b17c8c-ead6-11e9-9d60-3106f5b1d025 > > I don't understand why modern security systems have an upper limit on passphrase length. > > Because people can't remember passwords, and companies don't like > employing full-time password changers. i don't understand this comment. the length of a password is only vaguely related to memorability. long english phrases are easy to remember. unfortunately, they are also easy to harvest automaticly, so "four score and seven years ago" might be a bad password. - erik