Top Ten Passwords
-
Counfound them, ask for the first 25 Happy Primes.
------------------------------------ No Good Deed Goes Unpunished Clare Boothe Luce
1:)2:)3:)5:)... Works for me!
I wanna be a eunuchs developer! Pass me a bread knife!
-
See Here[^] I have actually banned PASSWORD from being a password. I assign all members of staff with their passwords, an example would be "Dav456id" or "Col573ette" these are safer than "Gandalf" (Which actually IS a Password on my machine for a specific purpose! Guilty As Charged Your Honour).
------------------------------------ No Good Deed Goes Unpunished Clare Boothe Luce
-
Dalek Dave wrote:
"Dav456id" or "Col573ette"
Note: No special characters in those passwords. Hackers, begin your work... :)
Now...bring me that horizon. And really bad eggs...Drink up me hearties, YO HO!
I usually run with a combination of size and character selections. Taking the "Gandalf" as an example mine would be: G@nd@lfTh3Wh1t3 other exampleas: >> C0rl3773Surn@m3 >> D@v1d$urn@m3 >> MyPuppy1$Qu173 stuff like that :) My standard types consist of 12+ length, 2 caps, 6 small 2special and rest numbers, all thrown together adhering to a certain "writing-layout" rule(s) I decided on.
-
See Here[^] I have actually banned PASSWORD from being a password. I assign all members of staff with their passwords, an example would be "Dav456id" or "Col573ette" these are safer than "Gandalf" (Which actually IS a Password on my machine for a specific purpose! Guilty As Charged Your Honour).
------------------------------------ No Good Deed Goes Unpunished Clare Boothe Luce
-
If the password hash stored is 256-bit (16 byte) (like MD5) each password except one with number of characters between 1-15 has a tween hash into 16 character password. That means 16-char password may have the security of 6 chars (even the same hash as 123456 :laugh: ). If you increase the num of characters you get even more collusions. BTW password I use for codeproject is 4% strong according to this[^]. :^)
According to that site "!@#$%^&*()" is 100% strong.
-
If the password hash stored is 256-bit (16 byte) (like MD5) each password except one with number of characters between 1-15 has a tween hash into 16 character password. That means 16-char password may have the security of 6 chars (even the same hash as 123456 :laugh: ). If you increase the num of characters you get even more collusions. BTW password I use for codeproject is 4% strong according to this[^]. :^)
-
"Enter any 11-digit prime number to continue."
All those who believe in psycho kinesis, raise my hand.
-
OriginalGriff wrote:
All those who believe in psycho kinesis, raise my hand.
Hehe, I believe that if I act like enough of a psycho, you'll raise your hand just to get me to leave you alone. ;P
Given some of my friends, you may have to work at it... :omg: :wtf: :laugh:
All those who believe in psycho kinesis, raise my hand.
-
See Here[^] I have actually banned PASSWORD from being a password. I assign all members of staff with their passwords, an example would be "Dav456id" or "Col573ette" these are safer than "Gandalf" (Which actually IS a Password on my machine for a specific purpose! Guilty As Charged Your Honour).
------------------------------------ No Good Deed Goes Unpunished Clare Boothe Luce
Then again, being able to crack the passwords means having access to the stored passwords. A secure system should implement policies against dictionary attacks such as three tries and you are locked and making sure that sql injection doesnt simply serve up your login data. And of course, never actually storing the passwords themselves even encrypted. Most websites I have used simply let you try as many times as you want though so for those I use the most random string I can possibly remember and never put anything on the site that is even remotely sensitive. If it gets hacked, MEH doesn't hurt. And everyone knows real geeks use "ResistanceIsFutile" for their secure passwords. :)
-
Given some of my friends, you may have to work at it... :omg: :wtf: :laugh:
All those who believe in psycho kinesis, raise my hand.
-
MD5 is 128-bit which is 16-bytes. Runtime error, sorry! :~ :laugh:
