Jump to content

Password Security Tips Wrong

Gar1eth

By + Gar1eth
in The Lounge

 Share
This topic is 1128 days old and is no longer open for new replies.  Replies are automatically disabled after two years of inactivity.  Please create a new topic instead of posting here.  

Recommended Posts

nycguy Contributor

nycguy

Posted
Posted (edited)

The gist of the article is:

 

"Academics who have studied passwords say using a series of four words can be harder for hackers to crack than a shorter hodgepodge of strange characters—since having a large number of letters makes things harder than a smaller number of letters, characters and numbers. In a widely circulated piece, cartoonist Randall Munroe calculated it would take 550 years to crack the password “correct horse battery staple,” all written as one word. The password Tr0ub4dor&3— a typical example of password using Mr. Burr’s old rules—could be cracked in three days, according to Mr. Munroe’s calculations, which have been verified by computer-security specialists."

 

So many sites, however, require the hodgepodge so maybe the password should be "correcthorsebatterystaple1@"?

Edited by nycguy
Link to comment
Share on other sites
Gar1eth Grand Master

+ Gar1eth

Posted
  • Author
Posted

Thank you @nycguy. I appreciate the help.

 

Article is behind a paywall.

 

Kevin Slater

 

I'm sorry. It wasn't for me. I'm not a member. But I have the app. There are articles on the app that you don't have to be a paid member to see.

 

 

Here's a similar but not as in depth article not behind a paywall.

 

https://www.google.com/amp/amp.timeinc.net/fortune/2017/05/11/password-rules/%3Fsource%3Ddam

 

One thing the WSJ article makes more of a point than the Google article is that the 4 words you run together shouldn't be related. I mean redrubberballbounces might be easy to figure out. But if you pick some random 4 word and run them together, I'm not sure I will be able to remember them any better than I do my current passwords.

 

Gman

Link to comment
Share on other sites
rvwnsd Grand Master

rvwnsd

Posted
Posted
Article is behind a paywall.

 

Kevin Slater

The premise of the article is the requirement to use a combination of letters, numbers, and special characters forces people to choose usernames and passwords that are easy to guess.

 

So...all you have to do, @Kevin Slater, is keep guessing and you will eventually be able to log into WSJ for free!

Link to comment
Share on other sites
gallahadesquire Grand Master

gallahadesquire

Posted
Posted
I use a nemonic as my passwords,

 

For instance

 

I love hiring hot hunks

 

You use the first letter of each word

 

Add in a Capital letter somewhere abstract in the middle,

 

And some numbers

 

so the password becomes something like this.

 

ilhHh69

 

This is more guessable than something like countryhorsessraplebattery

Link to comment
Share on other sites
RM Experienced

RM

Posted
Posted

I don' t change my passwords. If no one has hacked my e-mail password in the last 17 years, why bother changing it? I change all 20 or so passwords at work regularly, but that's because it's required.

Link to comment
Share on other sites
gallahadesquire Grand Master

gallahadesquire

Posted
Posted
interesting, i usually go with what im pass wording, plus the name of a pet, plus the sound an animal makes, a number, and a non alphanumeric.

so it would look like Daddiespoochieneigh1!

daddies site, name of pet, horse sound, 1, !

That's a good one. I use curly brackets reversed (right first, then left); cat 's name; and a number.

The Powers That Be tell me it would take years to crack.

Link to comment
Share on other sites
instudiocity Mentor

instudiocity

Posted
Posted
The gist of the article is:

 

"Academics who have studied passwords say using a series of four words can be harder for hackers to crack than a shorter hodgepodge of strange characters—since having a large number of letters makes things harder than a smaller number of letters, characters and numbers. In a widely circulated piece, cartoonist Randall Munroe calculated it would take 550 years to crack the password “correct horse battery staple,” all written as one word. The password Tr0ub4dor&3— a typical example of password using Mr. Burr’s old rules—could be cracked in three days, according to Mr. Munroe’s calculations, which have been verified by computer-security specialists."

 

So many sites, however, require the hodgepodge so maybe the password should be "correcthorsebatterystaple1@"?

So does that mean I need to stop using "password" and use maybe, "The quick brown fox jumped over the lazy dog?"

Link to comment
Share on other sites
  • 3 years later...
orville Grand Master

orville

Posted
Posted

Thanks for the data table. Although I imagine that as GPU's/CPU's advance, the above will be cut down. Although I suppose by then we'll have to have 24 character passwords as well. LOL

It also helps to strengthen security and ban hackers when platforms implement 2-step verification via email or phone number.

Link to comment
Share on other sites
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

Contact Info:

The Company of Men
5834 C. North Kings Hwy #4343
Alexandria, VA 22303

Email: moderators@companyofmen.org

Help Support Our Site

Our site operates with the support of our members. Make a one-time donation using the buttons below.

$10 $25 $50 $100 $200

Make a recurring donation

Additional Resources

×
×
  • Create New...