|
by Entropy Stew 08/16/2015, 9:42pm PDT |
|
|
|
|
|
All lowercase: 26 possible characters
Possibilities in an 8 character password: 26^8 = 208,827,064,576
Dictionary attacks are extemely trivial
Brute force attacks are probably trivial
English letter pairing frequency drastically lowers the effective search space
Upper + lower + number: 62 possible characters
Possibilities in an 8 character password: 62^8 = an answer in scientific notation because the number is fuckhuge
Dictionary attacks are no longer trivial
Brute force attacks are non-trivial
English letter pairing frequency drastically lowers the effective search space, but is blunted by numbers and caps
Password entropy checks could be performed in order to do away with character classes, but then communicating the nature of a rejected password means telling the user "make the password more better" without an explicit reason their password was rejected.
-/ES/- |
|
|
|
|
|
|
|
Why does everyone require mixed case, special characters, and numbers in passwor by ds now? -fucking idiot 08/15/2015, 3:03pm PDT
Steve Gibson figured out a secure password trick.... by Roop 08/15/2015, 3:42pm PDT
Re: Why does everyone require mixed case, special characters, and numbers in pas by Ice Cream Jonsey 08/15/2015, 10:26pm PDT
Re: Why does everyone require mixed case, special characters, and numbers in pas by Worm 08/16/2015, 12:42pm PDT
Wait that's not the right one is it? Oh well. NT by Worm 08/16/2015, 12:43pm PDT
No, but it's a terrible comic strip. You must have searched for by Ice Cream Jonsey 08/17/2015, 9:04pm PDT
Re: Why does everyone require mixed case, special characters, and numbers in p by Rafiki 08/16/2015, 8:02am PDT
I meant to cut off that last sentence by Rafiki 08/16/2015, 8:04am PDT
Apparently "microsoft honkies" in Polish = by "microsoft honkies" 08/16/2015, 1:55pm PDT
More character classes = more security by Entropy Stew 08/16/2015, 9:42pm PDT
Re: More character classes = more security by fucking idiot 08/16/2015, 11:06pm PDT
Ha ha hahaha by Ice Cream Jonsey 08/17/2015, 1:18am PDT
You didn't read my installation guide! by Rafiki 08/17/2015, 10:38am PDT
Did FoK's store app prediction come true? NT by fucking idiot 08/17/2015, 6:51pm PDT
Look at these disgusting bootlickers by idiot 08/18/2015, 6:14am PDT
Re: Look at these disgusting bootlickers by Brian 08/18/2015, 8:30am PDT
I don't have enough security research cred to actually tell you if that's better by Entropy Stew 08/17/2015, 1:07pm PDT
I bet in practice they wouldn't be as secure by Fullofkittens 08/17/2015, 3:56pm PDT
dumb idea by The Happiness Engine 08/19/2015, 4:04pm PDT
Ha ha ha you dumb bastard by The Happiness Engine 08/19/2015, 4:27pm PDT
|
|