>Hi
>
>I kinda figured that that was possible but should not be too much of a problem. It seems improbable that a user who is guessing a password would strike a combination that would guess any different combination that would generate the same number.
>
>Regards
>Geoff Scott
****
That is correct. Checksum has to be good because it has been around so long. The problem with using it for a password is no knowing what combination of characters generate the same checksum.
Probably the real answer lies in the value of what is available to the illegal user. If it is a padlock and you are just keeping out honest people that is one thing. If it is patient information then checksum is unacceptable.
Dr. Ken A. McGinnis
Healthcare software design