1. Forum
  2. DOVE-Net
  3. Internet

  • find out how secure your password is here

    From Matt Munson@VERT/INLANDUT to All on Sun Mar 6 19:32:18 2011
    Hello everybody.

    http://howsecureismypassword.net/


    Matt




    ---
    ■ Synchronet ■ Inland Utopia - inlandutopia.etowns.org
  • From Cykros@VERT to Matt Munson on Tue Mar 8 06:06:15 2011
    Re: find out how secure your password is here
    By: Matt Munson to All on Sun Mar 06 2011 07:32 pm

    Hello everybody.

    http://howsecureismypassword.net/


    Matt

    I always find that the easy way to have really secure passwords that are still easy to remember (how to recall anyway) is to use an md5 hash of a standard password, and then throw on the first or first and last letter of whatever
    site the password is for. eg, the output from 'md5 -s passwordFK', or "0e558d0c942cea84ff756abefc106c9b", would be the result for a facebook password, where "password" is your standard root. This allows for quite
    random passwords, with an easy to remember formula, so the urge to write them down is gone, and in the meantime, you're also not pulled into the lazy trap
    of using the same password everywhere. Also, md5 hashes can be looked up at a variety of websites, just in case the system you're at doesn't have the
    command installed. I find it to be much more elegant than software password management tools.

    Anyway, just throwing that out there, seemed on topic.

    cykros


    ---
    ■ Synchronet ■ Vertrauen ■ Home of Synchronet ■ telnet://vert.synchro.net
  • From Digital Man@VERT to Matt Munson on Thu Mar 10 16:08:21 2011
    Re: find out how secure your password is here
    By: Matt Munson to All on Sun Mar 06 2011 07:32 pm

    Hello everybody.

    http://howsecureismypassword.net/

    What if they're logging the passwords and IPs?

    digital man

    Snapple "Real Fact" #50:
    Mosquitos have 47 teeth.

    ---
    ■ Synchronet ■ Vertrauen ■ Home of Synchronet ■ telnet://vert.synchro.net
  • From thinktank@VERT/INLANDUT to Digital Man on Thu Mar 10 17:54:48 2011
    Re: find out how secure your password is here
    By: Digital Man to Matt Munson on Thu Mar 10 2011 04:08 pm

    What if they're logging the passwords and IPs?
    maybe we shouldnt use the actual password.
    ~ I am on twitter: @thinktank79 on Twitter ~

    ---
    ■ Synchronet ■ Inland Utopia - inlandutopia.etowns.org
  • From Dreamer@VERT/SETXBBS to Digital Man on Thu Mar 10 23:42:00 2011
    Re: find out how secure your
    By: Digital Man to Matt Munson on Thu Mar 10 2011 04:08 pm

    Re: find out how secure your password is here
    By: Matt Munson to All on Sun Mar 06 2011 07:32 pm

    Hello everybody.

    http://howsecureismypassword.net/

    What if they're logging the passwords and IPs?

    Feel free to check out the code. It's pretty simple javascript, it runs client-side, and nothing is sent to the server.

    It's an interesting site. My most secure password would take 10 days to
    crack (that's the one I use for securing my PC, banking, etc). The least secure password I use (which is not in the dictionary; I'm not that stupid)
    for general sites apparently would only take about a second to crack.


    ---
    ■ Synchronet ■ Southeast Texas BBS -- setxbbs.synchro.net
  • From Morden@VERT/MASQBBS to thinktank on Fri Mar 11 06:39:16 2011
    Re: find out how secure your password is here
    By: thinktank to Digital Man on Thu Mar 10 2011 05:54 pm

    What if they're logging the passwords and IPs?
    maybe we shouldnt use the actual password.

    Maybe they're building a dictionary? Haha. Either way, I'd never input my passwords there, and I know how secure they are. Secure enough.

    |12|24- |48|15Morden


    ---
    ■ Synchronet ■ Masquerade BBS - http://www.masqueradebbs.com
  • From Gene Buckle@VERT/RETROARC to Dreamer on Fri Mar 11 10:27:05 2011
    Re: find out how secure your
    By: Dreamer to Digital Man on Thu Mar 10 2011 11:42 pm

    It's an interesting site. My most secure password would take 10 days to crack (that's the one I use for securing my PC, banking, etc). The least secure password I use (which is not in the dictionary; I'm not that stupid) for general sites apparently would only take about a second to crack.
    I use KeePass with 22 character random passwords at work. It lists something like 7 sep(sex?)tillion years to crack. :)

    g.

    ---
    ■ Synchronet ■ The Retro Archive - bbs.retroarchive.org
  • From Ragnarok@VERT/DOCKSUD to Digital Man on Sun Mar 13 14:14:52 2011
    El 10/03/11 21:08, Digital Man escribi≤:
    Re: find out how secure your password is here
    By: Matt Munson to All on Sun Mar 06 2011 07:32 pm

    > Hello everybody.
    >
    > http://howsecureismypassword.net/

    What if they're logging the passwords and IPs?

    digital man

    Snapple "Real Fact" #50:
    Mosquitos have 47 teeth.
    ---
    ■ Synchronet ■ Vertrauen ■ Home of Synchronet ■ telnet://vert.synchro.net
    ja! is it a "garbage recollector?"

    --
    Dock Sud BBS
    (quedamos pocos y nos conocemos)
    telnet://bbs.docksud.com.ar
    http://bbs.docksud.com.ar

    ---
    ■ Synchronet ■ Dock Sud BBS TLD 24 HS - http://www.docksud.com.ar - telnet://bbs.docksud.com.ar
  • From Fargo@VERT/PHARCYDE to Morden on Wed Mar 16 09:43:07 2011
    Re: find out how secure your password is here
    By: Morden to thinktank on Fri Mar 11 2011 06:39 am

    Maybe they're building a dictionary? Haha. Either way, I'd never input my

    Yeah, that's probably what they are up to :)
    also, they should check the password against a good wordlist.

    Otherwise the whole check is kinda unuseful.


    -Fargo

    ---
    ■ Synchronet ■ thePharcyde_ >> telnet://bbs.pharcyde.org (Wisconsin)
  • From Dreamer@VERT/SETXBBS to Fargo on Wed Mar 16 23:14:00 2011
    Re: find out how secure your
    By: Fargo to Morden on Wed Mar 16 2011 09:43 am

    Re: find out how secure your password is here
    By: Morden to thinktank on Fri Mar 11 2011 06:39 am

    Maybe they're building a dictionary? Haha. Either way, I'd never input my

    Yeah, that's probably what they are up to :)
    also, they should check the password against a good wordlist.

    Otherwise the whole check is kinda unuseful.

    Look at the sourcecode. There's a small dictionary included... the most commonly used by clueless users.

    Otherwise, it's simply a check of how long it would take to hash crack the password. In other words, if it's an average alphanumeric password of 7-8 characters, it would take almost no time at all. However, a longer password with nonalphanumeric characters included dramatically increases the time to break.

    ---
    ■ Synchronet ■ Southeast Texas BBS -- setxbbs.synchro.net
  • From Fargo@VERT/PHARCYDE to Dreamer on Thu Mar 17 05:31:14 2011
    Re: find out how secure your
    By: Dreamer to Fargo on Wed Mar 16 2011 11:14 pm

    Look at the sourcecode. There's a small dictionary included... the most commonly used by clueless users.

    Anyway, it's an excellent idea for building a modern password db, without the need to find sql injection vulnerable sites, with a large user base!

    *evil smile*

    -Fargo

    ---
    ■ Synchronet ■ thePharcyde_ >> telnet://bbs.pharcyde.org (Wisconsin)
  • From Tracker1@VERT/TRN to Gene Buckle on Mon Mar 21 00:27:06 2011
    On 3/11/2011 11:27 AM, Gene Buckle wrote:
    I use KeePass with 22 character random passwords at work. It lists something like 7 sep(sex?)tillion years to crack. :)

    I've been keeping keepass portable in my dropbox... works out pretty well.

    --
    Michael J. Ryan - http://tracker1.info/

    ---
    ■ Synchronet ■ Roughneck BBS - telnet://roughneckbbs.com - www.roughneckbbs.com