When choosing a password, thnk wisely

[MizARee 30]

 

This is a good resource for you to use when choosing a password. With so many accounts being hacked, I thought I would post this here for everyone to see just how long it takes to hack a password. Also, when choosing your password do not use any personal information. Example are pets names, birthday, place you live and so on. Make the password that makes no sense. Use combination of letters in upper and lower case, use numbers, use symbols (examples are @,#.%). Hope this helps everyone out in keeping their accounts safe.

[Nk100_Original 13]

and 23 caracteres? :mrgreen:

[Chaos1997 4]

one of mine account had 8 characters,yesterday i could use it,now i can't (hacked), and you say 2 centuries? =_=

 

i could have made it maximum a year ago... no one ever found that password...

[laserdart 0]

 

From My Reashearch

 

To Make A Good Password

 

Take Atleast 8 characters Take a name , Put lower cares and upper case thought the password , and put atleast 4 numbers in between the letters

 

To Make An Indestructible Password , Take a frase like , I Cant Belive Its Not Butter , Take the 1st letter and the last letter in each word and put the letters together which will give you somthing like ICtBeIsNtBr , Then take numbers and place then all in between each letter I1C2t3B4e5I6s7N8B9r0 , then take words from the phrase and put it at the end , I1C2t3B4e5I6s7N8B9r0cantbeliveitsnotbutter It looks like pure jibarish but its easy to remember and hard to guess it :mrgreen: tought to me by "v1abrams/v2abrams"

 

R.I.P. : v1abrams (your account will be missed)

[r_nuclearbom0 62]

Thanks! I hope this will help me to create new not hackable passwords (:

[SilentShadow 104]

And as well, NEVER reveal your password to anyone, especially to the sites that supposedly promise you "mountains of Gold" (aka the phishing/scam sites).

 

This will ensure you are thoroughly secure.

[NewUnit1 22]

And as well, NEVER reveal your password to anyone, especially to the sites that supposedly promise you "mountains of Gold" (aka the phishing/scam sites).

 

This will ensure you are thoroughly secure.

 

 

and the idiots who ask you, "OOO lets TRADE. I got tons of marshal accounts!"

[r_Vojta70 1]

I use LastPass - it can automatically log me on and I don'T anymore have to remember a lot of passwords and can have them 16 characters long ;-)

[Contaminated 129]

You don't need to overdo your passwords... what you need to do is NOT SHARE YOUR ACC OR DOWNLOAD BS FROM THE INTERNET.

 

For a password, keep it around 12 characters, make a phrase of some sort that you like, change some letters with numbers, add some caps, some symbols if you want, change the spelling a bit. Never been hacked, because I don't share my acc and my pass is complex and hard to guess but it takes less than 5 seconds to type it in (with only 2 fingers!! :lol: )

 

Example

Make a phrase: too hard to guess

Change some letters with numbers: toohard2guess

Add some caps: toohaRd2guEss

Add some symbols: tooh@Rd2guEss

Change the spelling a bit: twoh@Rd2guEsss

 

Now write it down on a piece of paper dedicated as your "password" paper where you write all your passwords for everything and keep it beside the computer

Now practice typing it in the computer multiple times, eventually you should develop a natural flow to your typing when you type the password

You will be able to type your password well enough that you wont even know where the caps and numbers are, but you can log in anyway because your fingers know what buttons to press in what order.

Soon you could probably do it without even looking at your keyboard.

And you will never have to look at your password paper when you type your password, unless it's really urgent

 

Remember, having a difficult over-secure password will not help you if you download BS from the internet and get a keylogger.

[r_therussian0 47]

[r_optprime0 0]

http://imgs.xkcd.com/comics/password_strength.png

Image tag removed - koolwalky

 

since I did and do some security:

that is simply incorrect.

a dictionary attack on multiple words is TONS faster then cracking a case sensitive, alpha numeric password at correct size (7+ chars)

 

the counting of "bits" is wrong in your meme.

funny meme though.

[r_Clue1 4]

That comic is a joke.

[r_therussian0 47]

Guys, before saying that something's wrong, read up on xkcd. It's a team of first class geeks, and they do a very good job making sure every comic they release is not only funny, but also factually correct. Yes, dictionary-based bruteforce would be faster on a common word, but without the knowledge of how many words there are and how many letters long each one the fact that components of the password are words does not give an attacker any advantage. Any attack on such password would have to use the same method as an attack on an alphanumeric password. Yes, there is substrantially less symbols, but if you go ahead and calculate the entropy introduced by the fact that apassword is significantly longer (and just as easy to remember), you'll see that the rate of increase is much higher than the loss in entropy from using only letters compared to alphanumeric combinations. Therefore, the simplest and cleanest form of the message from this commic is that as long as you are using multiple words, increasing password length three-fourfold will result in a much more secure password even despite the loss of entropy from using simple letters. If you're interested in reading a slightly more math-grounded debate about this comic with the same conclusions that I just provided, please read this article. There, the author clearly and uneqivocally demonstrates that increasing password length results in higher security above and beyond any other factors, such as use of non-standard characters and substitutions, while the password is still possible to remember.

[r_optprime0 0]

you are mistaken my friend.

 

the only thing that matters in making a "strong" password - is how big is the password-space.

(how unique is my password ? - one of X, because that is how many tries I need to try them all)

 

for 7 letter alpha-numeric-case sensitive: 7^(10+26+26)

 

the english lang has ~ 600K words

lets say our dictionary also has lots of slang and expressions too, just to make our password stronger. so 1200 K word dict. (you really don't have that many. so this is an upper boundary)

 

to find a combination of 5 word - 5 * 1200000. (the empty word, is also a word in our dictionary, thus we can find passwords of 1 to 5 words)

that is nothing for a password-space. very insecure (the number above has 50 digits in it. a bit more :) ).

[r_therussian0 47]

you are mistaken my friend.

 

the only thing that matters in making a "strong" password - is how big is the password-space.

(how unique is my password ? - one of X, because that is how many tries I need to try them all)

 

for 7 letter alpha-numeric-case sensitive: 7^(10+26+26)

 

the english lang has ~ 600K words

lets say our dictionary also has lots of slang and expressions too, just to make our password stronger. so 1200 K word dict. (you really don't have that many. so this is an upper boundary)

 

to find a combination of 5 word - 5 * 1200000. (the empty word, is also a word in our dictionary, thus we can find passwords of 1 to 5 words)

that is nothing for a password-space. very insecure (the number above has 50 digits in it. a bit more :) ).

 

Please read the link I posted. It clearly shows how increasing length of a password generates entropy at a much higher rate than varying the symbols.

[r_optprime0 0]

your link proves nothing.

you should learn the math - not count using an internet page.

it counts the possibilities based on 26 chars.

hence - you got a number of (length of five words)^26

but your password space is much smaller because you only choose meaningful words - hence - have much less options.

 

(for example - english has 600K words, the longest is 27 letters long. 27^26 is a lot bigger then 600000)

 

I have a Uni. degree in this stuff, and this is basic combinatorics.

if you want to continue being wrong - be my guest.

[r_optprime0 0]

also - basic high school math -

 

a^x

 

if you increase the (a) it is much stronger then increasing the (x)

[Transsfer 0]

Oh!

[r_DanTheTank0 0]

This should be sticky'd, but then maybe that will attract hackers, too...

[r_nuclearbom0 62]

This should be sticky'd' date=' but then maybe that will attract hackers, too...[/color']

 

No, you can find this on the internet too, or you can google it. There's no need for a sticky.

[SilentShadow 104]

also - basic high school math -

 

a^x

 

if you increase the (a) it is much stronger then increasing the (x)

 

Um, no?

 

3^2 = 9.

 

Increase (a) by 1.

 

4^2 = 16.

 

Take original monomial, increase (x) by 1.

 

3^3 = 27.

 

Because math is fun, kids!

[r_arnootje0 2]

My account has a password with more than 12 characters and is stolen by hacker.

[r_nuclearbom0 62]

My account has a password with more than 12 characters and is stolen by hacker.

 

Maybe it was iamstupidiamstupid ?

[r_therussian0 47]

your link proves nothing.

you should learn the math - not count using an internet page.

it counts the possibilities based on 26 chars.

hence - you got a number of (length of five words)^26

but your password space is much smaller because you only choose meaningful words - hence - have much less options.

 

(for example - english has 600K words, the longest is 27 letters long. 27^26 is a lot bigger then 600000)

 

I have a Uni. degree in this stuff, and this is basic combinatorics.

if you want to continue being wrong - be my guest.

 

You are forgetting a simple matter: ease of remembering the password. We're not taling in absolute terms here, we're limited by a human capacity to remember the password.

[r_nuclearbom0 62]

You are forgetting a simple matter: ease of remembering the password. We're not taling in absolute terms here' date=' we're limited by a human capacity to remember the password. [/quote']

 

If you write it down, or save it somewhere on your computer, you can remember it also?