Login

**Tiberius** · March 28, 2012 at 1:25 pm

My latest article (containing SCIENCE) about password strength, and how to create stronger (and memorable) passwords.

http://cryptogasm.com/2012/03/on-password-strength/

Since a lot of this article was responding to someone else, I'll be writing a more in-depth one about the objections raised to my proposed password scheme.

Violet · March 28, 2012 at 1:46 pm

I'm bathing in 34 fish, HORRID FISHING DAY.

Seriously... if I have 8 nets relegated to me to pick, and in those nets I catch only 34 fish... then it's something like 4 fish a net.

THAT IS WORTHLESS FISHING! CRIKEY!

Shell B · March 28, 2012 at 1:50 pm

Aw, Lily.

My passwords suck. Wink

Violet · March 28, 2012 at 1:51 pm

(March 28, 2012 at 1:50 pm)Shell B Wrote: Aw, Lily.

My passwords suck.

Hey now... it's better than getting skunked in every net. 34 > 0 every day.

My passwords lick. Interested? Wink

Doubting Thomas · (This post was last modified: March 28, 2012 at 2:08 pm by Doubting Thomas.)

OK, so I'm going to have to give up 12345 as my password. I think I'll start using qwerty instead. Much more secure.

OK, so they talk about computers being able to hack passwords in incredibly short amounts of time, but let's say they're trying to hack my yahoo email account, for instance. They'd either have to type in every password the computer comes up with, or else have some way the computer automatically enters each password. Either way will take quite a bit of time, given the time it will take the data to flow back & forth through the internet and the time it will take the server to check the login/password combination. Of course the computer will be faster but I don't think they'd be able to hack an online email account password in 35 seconds.

NoMoreFaith · March 28, 2012 at 2:10 pm

(March 28, 2012 at 2:01 pm)Doubting Thomas Wrote: OK, so I'm going to have to give up 12345 as my password. I think I'll start using qwerty instead. Much more secure.

I have the same combination on my luggage....

**Tiberius** · March 28, 2012 at 2:12 pm

No, and I covered that in the article. I was talking about attacks on stolen passwords hashes. An attack on an actual Yahoo server would probably bring up lots of red flags for the sysadmin, who would see the attack and quickly shut it down (blocking the IP, disabling the account temporarily, etc).

However, if Yahoo's database gets hacked, and your password hash is stolen, your password will get broken if it is not secure enough.

Violet · March 28, 2012 at 2:28 pm

(March 28, 2012 at 2:01 pm)Doubting Thomas Wrote: OK, so I'm going to have to give up 12345 as my password. I think I'll start using qwerty instead. Much more secure.

This was cute... why couldn't you have left it at that? Thinking

**Jackalope** · March 28, 2012 at 3:03 pm

I used to use "password" as my password, and when I realized that wasn't very smart, I changed it to "mypassword1".

Take that, hackers!

Doubting Thomas · (This post was last modified: March 28, 2012 at 4:48 pm by Doubting Thomas.)

OK, I guess I'm not up on what exactly a "hash" is.

Oh and I think I'll start spelling out my passwords in Morse code. Take that hackers!

Login
Username:
Password:	Lost Password?
	Remember me

Possibly Related Threads...
Thread		Author	Replies	Views	Last Post
	Change your Ebay password!	Autumnlicious	5	1119	May 27, 2014 at 11:23 am Last Post: vorlon13