A pair of academic researchers have analyzed the use of passwords by many prominent online sites, and found that many sites require them in contexts that are superfluous and failing to do their part to secure the information on their end. The end result, they argue, is a tragedy of the commons, with the commons being the finite memory of the average user. The client s default configuration for SSL-VPN has a certificate issue, researchers said. Read the full article in this article by Ars Technica.
Source: https://threatpost.com/best-practices-passwords-not-encouraged-060910/74083/