Forum Overview :: Rants
 
More character classes = more security by Entropy Stew 08/16/2015, 9:42pm PDT
All lowercase: 26 possible characters
Possibilities in an 8 character password: 26^8 = 208,827,064,576
Dictionary attacks are extemely trivial
Brute force attacks are probably trivial
English letter pairing frequency drastically lowers the effective search space

Upper + lower + number: 62 possible characters
Possibilities in an 8 character password: 62^8 = an answer in scientific notation because the number is fuckhuge
Dictionary attacks are no longer trivial
Brute force attacks are non-trivial
English letter pairing frequency drastically lowers the effective search space, but is blunted by numbers and caps

Password entropy checks could be performed in order to do away with character classes, but then communicating the nature of a rejected password means telling the user "make the password more better" without an explicit reason their password was rejected.

-/ES/-
PREVIOUS NEXT REPLY QUOTE
 
Why does everyone require mixed case, special characters, and numbers in passwor by ds now? -fucking idiot 08/15/2015, 3:03pm PDT NEW
    Steve Gibson figured out a secure password trick.... by Roop 08/15/2015, 3:42pm PDT NEW
    Re: Why does everyone require mixed case, special characters, and numbers in pas by Ice Cream Jonsey 08/15/2015, 10:26pm PDT NEW
        Re: Why does everyone require mixed case, special characters, and numbers in pas by Worm 08/16/2015, 12:42pm PDT NEW
            Wait that's not the right one is it? Oh well. NT by Worm 08/16/2015, 12:43pm PDT NEW
                No, but it's a terrible comic strip. You must have searched for by Ice Cream Jonsey 08/17/2015, 9:04pm PDT NEW
    Re: Why does everyone require mixed case, special characters, and numbers in p by Rafiki 08/16/2015, 8:02am PDT NEW
        I meant to cut off that last sentence by Rafiki 08/16/2015, 8:04am PDT NEW
            Apparently "microsoft honkies" in Polish = by "microsoft honkies" 08/16/2015, 1:55pm PDT NEW
    More character classes = more security by Entropy Stew 08/16/2015, 9:42pm PDT NEW
        Re: More character classes = more security by fucking idiot 08/16/2015, 11:06pm PDT NEW
            Ha ha hahaha by Ice Cream Jonsey 08/17/2015, 1:18am PDT NEW
            You didn't read my installation guide! by Rafiki 08/17/2015, 10:38am PDT NEW
                Did FoK's store app prediction come true? NT by fucking idiot 08/17/2015, 6:51pm PDT NEW
                Look at these disgusting bootlickers by idiot 08/18/2015, 6:14am PDT NEW
                    Re: Look at these disgusting bootlickers by Brian 08/18/2015, 8:30am PDT NEW
            I don't have enough security research cred to actually tell you if that's better by Entropy Stew 08/17/2015, 1:07pm PDT NEW
                I bet in practice they wouldn't be as secure by Fullofkittens 08/17/2015, 3:56pm PDT NEW
                    dumb idea by The Happiness Engine 08/19/2015, 4:04pm PDT NEW
                        Ha ha ha you dumb bastard by The Happiness Engine 08/19/2015, 4:27pm PDT NEW
 
powered by pointy