
Another real benefit is that in Windows, if you use a password that’s 15
characters or longer, Windows does not store the LanMan hash. LanMan
hashes are bad because they are particularly vulnerable to some types of pass-
word attacks (see Chapter 2 for more on LanMan hashes). If your password is
15 characters or longer, there is no LanMan hash for hackers to go after.
Building Longer Passwords
My own password strategy is to first build a long password, and then make it
just a little longer.
However, sometimes the hardest part of building long passwords is
coming up with creative techniques to make your passwords longer without
making them any harder to ...