|
View Poll Results: How Long And Complex Is Your Password?
|
|
5 Characters or less
|
   
|
0 |
0% |
|
8 Text characters or less
|
  
|
1 |
11.11% |
|
8 Alpha-numeric characters including symbols or less
|
  
|
2 |
22.22% |
|
12 Text characters or less, but more then 8
|
  
|
1 |
11.11% |
|
12 Alpha-numeric characters including symbols or less, but more then 8
|
  
|
4 |
44.44% |
|
More then 12 text characters
|
  
|
0 |
0% |
|
More then 12 alpha-numeric characters including special symbols
|
|
1 |
11.11% |
 |
|
03-10-2009
|
#11 (permalink)
|
|
¿42?
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
The manager I use is passphrase protected with a nice long wacky passphrase spelled out with leet 
Most of my passwords are themselves derivatives of various passphrases I create solely for the purpose of creating a password....
----------------
Clay
Editor and Forum Administrator
stego anyone?
Add yourself to Hypography's Frappr.
"There are only 10 kinds of people in the world --
.....Those who understand binary, and those who don't."
"Draw no conclusions before their time." |
|
|
03-10-2009
|
#12 (permalink)
|
|
Slaying Bad Memes
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
 I got an unbeatable password.
Nobody will EVER guess it in a million years.
It's the word "password". Yuck, yuck, yuck, yuck... 
Okay, sometimes I have to pad it with zeros to make it long enough.
But NOBODY would ever guess that in a ZILLION years!
----------------
Hypography Forums Moderator
-- - - - - -
What concerns me is not the way things are, but rather the way people think things are.
Epictetus, Greek Philosopher
The map is NOT the territory.
Korzybski, Polish-American Philosopher
|
|
|
|
03-10-2009
|
#13 (permalink)
|
|
Dedicated Smart-ass
Location:
Just before 0xAA55
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
it's the first password that any dictionary cracker tries... in many variations :P
----------------
Microsoft, the leader in using innovative tactics to promote irksome experience, coupled with antiquated technology that's held together by a pyramid of makeshift afterthoughts.
Apple, the leader in using irksome tactics to promote innovative experience, coupled with an antiquated core that's enhanced by state-of-the-art afterthoughts.
Linux, the leader in not using any tactics to promote user-defined experience, coupled with state-of-the-art core enhanced by innovative afterthoughts.
 |
|
|
|
03-10-2009
|
#14 (permalink)
|
|
Questioning
Sponsor |
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
In a former life I learned quite a bit about keyloggers. Anyone who does that gets a hefty dose of paranoia - you visualise a shadowy figure leaning over your shoulder watching your every move... 
Even after my escape into the real world, some of the paranoia remains.
High-strength passwords - at least a dozen random characters/symbols
Different passwords for every login
A single encrypted file on an encrypted memory stick contains all the passwords
Use password manager wherever possible (thanks for the link, C1ay - it looks interesting)
Where password manager can't be used (new computer for instance), copy/paste from file using the mouse right-click or edit pulldown, not ctrl-C/ctrl-V. Some keyloggers can convert the ctrl-V keypress into the paste string. Back then, mouse clicks weren't readable via keylogger - if they are now, I'm not sure I want to hear about it!
Change passwords frequently - especially if I've used them on a machine I don't entirely trust
My memory isn't what it was. If I have to remember a password (e.g. the encrypted password file) I think of a few words connected to what I'm doing at the time (say, George Hotel, desk), change them around using my own leet-similar code (G30rg3 H0t37 d35k) and connect with an odd character (G30rg3!H0t37!d35k).
And a few other things I'm too paranoid to talk about!  |
|
|
|
03-12-2009
|
#15 (permalink)
|
|
Curious
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
keep in mind that a bigger charset will increase the time it takes to bruteforce a password.
|
|
|
|
03-12-2009
|
#16 (permalink)
|
|
Dedicated Smart-ass
Location:
Just before 0xAA55
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
space is actually a better random character then an exclamation mark...
Donk, in my current life i deal with key loggers, both software and hardware, thing is, if someone installed a key logger on your computer to "get your passwords" you are already screwed... they both got in and installed it so your security was compromized already, at that point you dont even have to run a key logger to get your passwords, because there are many ways to get the data, regardless of whether you typed it or pasted it (its as easy to log the copy actions as it is to log key presses).
Now hardware loggers are a little different, in that if you copy and paste your passwords they will not catch those passwords, but you cant copy and paste your login password, thus you are still (as they say in leet speak) pwned, as software loggers can be installed afterwards with your login password.
Biometric authentication is still bad, as its easy to lift a finger print, and use it to get in (most of those devices are easy to fool).
Centrally managed changing keys are probably one of the only, still not fool proof, ways to manage security. But honestly you can be paranoid as you can be with password security in your organization, bottom line is that there is still a "Human Factor" in the equation, which means that exploiting that factor is most of the time, the easiest route to take to gain access. I've talked to many guys who do penetration testing, and i just have to say, you'd be surprised how far a fake badge and a printed design on a shirt, or a cell phone that rings at just the right time, or a telephone butt set set can take you, or a dozen cheap flash drives, or carefully labeled cds can take you... and ofcourse nothing beats the phone call from your new IT guy
----------------
Microsoft, the leader in using innovative tactics to promote irksome experience, coupled with antiquated technology that's held together by a pyramid of makeshift afterthoughts.
Apple, the leader in using irksome tactics to promote innovative experience, coupled with an antiquated core that's enhanced by state-of-the-art afterthoughts.
Linux, the leader in not using any tactics to promote user-defined experience, coupled with state-of-the-art core enhanced by innovative afterthoughts.
Last edited by alexander; 03-12-2009 at 09:13 AM..
|
|
|
|
03-20-2009
|
#17 (permalink)
|
|
Questioning
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
one of my friends that posts around here theory5 uses a password generator it is pretty neet =D
----------------
"When one person suffers from a delusion it is called insanity; when many people suffer from a delusion it is called religion."
- Robert Pirsig (1948-)
" there is no common sense in physics "
- Stephen Hawking
WOOOOO RAINBOWS O_O
|
|
|
|
03-20-2009
|
#18 (permalink)
|
|
¿42?
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
Quote:
Originally Posted by buddyzen
one of my friends that posts around here theory5 uses a password generator it is pretty neet =D
|
The problem with password generators is that they produce great passwords that are very difficult to remember when you can actually make great passwords yourself that are very easy to remember.
----------------
Clay
Editor and Forum Administrator
stego anyone?
Add yourself to Hypography's Frappr.
"There are only 10 kinds of people in the world --
.....Those who understand binary, and those who don't."
"Draw no conclusions before their time." |
|
|
|
03-20-2009
|
#19 (permalink)
|
|
M.C. Grillmeister
Sponsor |
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
This thread reeks of paranoia!
Do you guys really have such sensitive data that it needs to be protected with such zeal?
Sure, I use complex passwords for my banking/credit info, but email is pretty benign. 
IOW, I don't view someone hacking into my yahoo account a big threat. They'll see evites and chatter amongst friends, and that's about it.
Of course, a little paranoia is not a bad thing. I guess I'm just not seeing the bigger picture...
Edumacate me! 
----------------
Hypography Science Forums Moderator
---
"There are no passengers on Spaceship Earth. We are all crew." - Marshall McLuhan
"We must not forget that when radium was discovered no one knew that it would prove useful in hospitals. The work was one of pure science. And this is a proof that scientific work must not be considered from the point of view of the direct usefulness of it." - Marie Curie
|
|
|
|
03-20-2009
|
#20 (permalink)
|
|
Questioning
Sponsor |
|
Not Ranked
:
+0 / -0
0 score
Re: Password Length And Complexity
You want edumacating? Or maybe I should leave you in happy innocence...
I've admitted the paranoia. Nobody is going to find anything of any use to them on my computers - not the ones connected to the internet, at least But when you've been part of a group who were constantly checking out each other's security, you make sure the doors are not only locked and bolted, but hidden as well. I remember the time when one member gloated that nobody could crack his machine... a few hours later a screenshot of his desktop appeared on the forum
You're probably right, freez. Most people wouldn't burgle a house even if the door was left wide open. Even fewer would check to see if it was locked; fewer still would check around the back for an open window. But I wish more people would learn just a little bit more about computer security - then maybe the internet wouldn't be so deluged in spam. |
|
|
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
|
|
» Advertisement |
|
|
|
