|
|
|
How secure is your password?
|
|
The following comments relate to this news article:
article published on 7 February, 2011
BusinessWeek has posted a nice concise report on how secure most passwords are, and how long it takes even hackers to guess it.
As it has been for years, the most popular password is "123456," followed by "password," "12345678," "qwerty," and "abc123."
The following is how long it takes for a hacker to randomly guess your password:
Length: 6 characters
Lowercase: 10 minutes
... [ read the full article ]
Please read the original article before posting your comments.
|
|
alewis
Junior Member
|
29. June 2011 @ 09:49 |
Link to this message
|
|
Same challenge to you, jeffrey_P.
All of this is hypothetical unless you have a FILE to work on. If you are trying to log into a system, its a different ball game.
|
|
Advertisement
|
|
|
|
|
Jeffrey_P
Senior Member
|
29. June 2011 @ 10:08 |
Link to this message
|
|
I'm not a hacker guy. I don't want to know anybodies personal information.
Thanks for the invite.
Jeff
|
|
alewis
Junior Member
|
29. June 2011 @ 10:20 |
Link to this message
|
lol! It was a hypothetical challenge :)
If someone can grab the pwd file from a net server - or worse, ecommerce/commercial/corporate login system - then the strength of one's password is probably the least worry.
Its a bit like WEP hacking. Lots of noise, but not quite so easy in practice. The hard part is GETTING the data to crack, not cracking it.
PiLGRi/\/\
|
|
Jeffrey_P
Senior Member
|
29. June 2011 @ 10:36 |
Link to this message
|
Even @ home I only use a wireless connection, WPA2 with a laptop outdoors on occasion. Still though there is no guarantee. A J45 connection is more secure.
Even hiding the SSID, WPA2 is ..... Seems you already know, so I'm preaching to the choir;)
Carry-on guy
Jeff
|
|
alewis
Junior Member
|
29. June 2011 @ 11:18 |
Link to this message
|
|
:-)
PiLGRi/\/\
|
Senior Member
|
30. June 2011 @ 05:11 |
Link to this message
|
|
i honestly wouldnt mind if my neighbours wanted to use my wireless connection as long as they are willing to pay a % of the internet costs.
i remember years ago bill gates claim to have a new setup unhackable.someone hacked it and sent $10000 worth of condoms to his house using his (bill gates)credit card.doesnt matter how smart you are or how much experience you have someones gonna be better.
@alewis im assuming someone hacking your computer would be pointless anyway.if someone or some group has a good reason to then maybe you'd get hacked.
custom built gaming pc from early 2010,ps2 with 15 games all original,ps3 500gbs with 5 games all original,yamaha amp and 5.1channel surround sound speakers,46inch sony lcd smart tv.
|
|
alewis
Junior Member
|
30. June 2011 @ 07:24 |
Link to this message
|
|
You miss the point. "hacking" someone's PC is not the same as cracking a password.
Having a tool that can brute force passwords at anynumber-per-second is not the point; this tool is *useless* against a system that locks out after 3 attempts. It is ONLY useful against a static file. As such, read beyond the headlines...
|
|
Jeffrey_P
Senior Member
|
30. June 2011 @ 08:14 |
Link to this message
|
Bill Gates has made a lot of off-the-wall comments like that.. "640k of RAM is all we will ever need."
Funny, I'm running 12 Gigs of DDR3.
Jeff
Cars, Guitars & Radiation.
This message has been edited since posting. Last time this message was edited on 30. June 2011 @ 08:15
|
|
alewis
Junior Member
|
30. June 2011 @ 13:28 |
Link to this message
|
Its not off the wall. Think about it - how many login attempts does a remote system grant before account lockout? 3. So a bruteforce crack is somewhat irrelevant there. Even without account lockout, the throughput a b/f cracker can operate at is massively lower that which it is capable of; it might be able to generate 130,000/sec, but will onlybe able to throw them at the prompt at 20 per minute, TOPS?
Thats not off the wall, thats fact. Until that changes...
WEP cracking. More useful, BUT you still need to capture 5000+ packets. Very easy if there is traffic. Not quite so easy if there is not - I'm not saying its impossible, but you do need some pre-conditions. Lets say the target network has an attached client, but the client is only trasmitting keepalives; 2 per min, and the odd burst. Lets say it will take 3 hours to capture the traffic. Sure, if you have the time OR can leave the sniffer alone. But that aint gonna work outside of your own house/place of work.
WPA cracking. much the same. In both cases, PROVIDED the target network is conveniently juxtaposed to yourself, yep its game over. BUT 'provided' is NOT a given.
File cracking. "HUDSON: Its game over, man, f***** game over".
When I say read beyond the headlines, its because its a journo spin. Shock! Horror! 'PASSWORD' and 'SECRET' are the most common passwords - we are all doomed! Change yours NOW! Even "knowing" that "fact", what exactly does it gain you. Or a hacker? Nothing until you actually attempt to login to an account which DOES use an "easily guessable" password. So go on, find an account and login to it... finding one is a lot harder than the headlines suggest.
Incidentally, whether BG did state that 640K ram was all we will ever need is disputed; I'm [b[sure[/b] I remember reading an article that attributed that to him 20 odd years ago.. but there was no source attribution in the article per se. And that said, this is the guy who massively criticised IBM over the choice of the 80286 processor for the AT, calling it "braindead" - and it is.
He did state that multitasking in less than 4MB was impossible - odd, given at the time those of us with Amigas were running a true pre-emptive multitasking OS in 512KB - and some in 256K.
PiLGRi/\/\
|
|
Jeffrey_P
Senior Member
|
30. June 2011 @ 13:40 |
Link to this message
|
I owned several Amiga. two 500's, three 2000's and two 3000's. Also a A4000 which was a hollow shell of previous Amiga's.I installed an 3 party vid card into my 3000-040 but it ruined what the Amiga was all about.
When I was an engineer at SLAC, Amiga's were used to render fast time plots. No PC or Mac could fill the bill.
I am truly saddened that Jay Minor sold the Amiga to Commodore.
Jay was a friend I could call for info. He passed away in the early '90's. His wife would answer the phone giving updates of his health.
RIP Jay Minor the father of the Amiga. :(
I see we are about the same age.
Jeff
Cars, Guitars & Radiation.
This message has been edited since posting. Last time this message was edited on 30. June 2011 @ 13:48
|
|
alewis
Junior Member
|
30. June 2011 @ 15:57 |
Link to this message
|
:-)
Old, bold, and still young at heart! I had an A500, then a B200 (which ended up with a 14MHz 68000, ICD FFV, GVP G-Force 68030@40MHz, Picasso II, and various SCSI cards, the first of which was a Supra WordSync. Sold on ebay to a dude in Australia, he paid 75UKP for the Mig, and 145ukp shipping!
Swapped a UW SCSI drive for an A4000 in 96, added a Picasso IV and WarpEngine040 to that. Then in 2004 stuck it in a tower. Managed to get another 4000 and stuck Cyberstorm PPC/060 and a Cybervision card, and an A1200 tower with a Blizzard 060. Sold them all in 2007 to a guy in London.
Loved the Amiga. I used to write for Commodore User International and ICPUG 'back in the day'. Jay didn't sell Amiga to C=, Amiga Inc sold to C=, but it was better than going into Tramiels hands at Atari, surely?
What pee'd me off was Tramiel *leaving* C= and then later Medhi Ali running it into the ground. We should have had AAA from 1990, and OS4 in 1992. Heck, if they had pushed it as a business machine in 1985, well, who knows eh.
But I still think the A1000 is the sexiest box around. Still have the Aug 1985 PCW with it on the front cover and the Guy Kewney (RIP) review. Fell in love with it then and there.
|
|
Jeffrey_P
Senior Member
|
30. June 2011 @ 16:23 |
Link to this message
|
Yep I had a Picasso IV. It was 32 bit video card so it was unusable in an A500 or A3000. I had a plug-in for one A500 (forgot the manufacturer") but it huge! It had three or four 16 bit slots, no video slot.
The 1000 was cool but it needed to be booted from a floppy. The A or B2000 was my fave.
Cable companies used the Amiga to view channel listings. It was funny when it crashed on them. Guru meditation error XXXX.;) That's how I figured out they were using the Amiga at the time.
Sweet memories of a platform that could of killed the PC and Mac if the Amiga was in proper hands.
Have a good one
Jeff
Cars, Guitars & Radiation.
This message has been edited since posting. Last time this message was edited on 30. June 2011 @ 16:24
|
|
Advertisement
|
|
|
Senior Member
|
1. July 2011 @ 07:08 |
Link to this message
|
|
if you can't go through it (in this case a password) go around it or over it or under it.
custom built gaming pc from early 2010,ps2 with 15 games all original,ps3 500gbs with 5 games all original,yamaha amp and 5.1channel surround sound speakers,46inch sony lcd smart tv.
|
|
