15 {{ upvoteCount | shortNum }}
15 {{ upvoteCount | shortNum }}

How secure are your passwords??

by davewebsmith
13 replies
We all use them, some of us use the same one on multiple sites, we all get lazy and lax

Here is a great tool to generate highly secure passwords - perfect for
  • Shared hosting - like BlueHost or HostGator where you how many sites under one account
  • Email accounts like Gmail
  • WHM Accounts
  • Root Passwords on Linux boxes
https://www.grc.com/passwords.htm

Should keep them busy for a while

[[Note below]]

According to wikipedia ...

Password strength - Wikipedia, the free encyclopedia

In 2002, distributed.net successfully found a 64-bit RC5 key in four years, in an effort which included over 300,000 different computers at various times, and which generated an average of over 12 billion keys per second.[8]
#passwords #secure
  • Profile picture of the author King Shiloh
    Banned
    How secure is the online tool? Is there really a 100% secure system? Hmm...I can't stop thinking.
    {{ DiscussionBoard.errors[2809804].message }}
  • Profile picture of the author Tyrus Antas
    I use PasswordMaker for firefox. Remembers just one
    password that is then used to generate all the other
    passwords and access all the websites.

    Mathematically proven to be secure:
    http://passwordmaker.org/

    Tyrus
    {{ DiscussionBoard.errors[2809869].message }}
  • Profile picture of the author Boghead
    I use the LastPass plugin for Firefox. It's free, encrypts and is easy to use.

    http://lastpass.com

    /Steve
    {{ DiscussionBoard.errors[2809902].message }}
  • Profile picture of the author theentry
    I just make up my passwords with random letters, numbers and characters -> #*@( etc.
    Signature
    Nifty Stats - the best free software to track your progress
    at multiple affiliate programs within one interface. Give it a try!
    {{ DiscussionBoard.errors[2809946].message }}
  • Profile picture of the author gotti3636
    The problem with using these commercial password makers is that they are easily cracked and reverse engineered by hackers. Instead of trying to hack you without having a clue of what your password is, if they know what password generator you are using then they will run with that instead.

    I still think nothing can beat a password that you make up yourself. Just have a couple of capital letters, a few numbers and a symbol and you will be fine Try to stay away from using actual words, random letters is better!
    Signature
    Always looking to invest in or partner with people on business ideas. PM me!
    {{ DiscussionBoard.errors[2809990].message }}
    • Profile picture of the author davewebsmith
      Originally Posted by gotti3636 View Post

      The problem with using these commercial password makers is that they are easily cracked and reverse engineered by hackers. Instead of trying to hack you without having a clue of what your password is, if they know what password generator you are using then they will run with that instead.

      I still think nothing can beat a password that you make up yourself. Just have a couple of capital letters, a few numbers and a symbol and you will be fine Try to stay away from using actual words, random letters is better!
      Not sure if you looked at the site i posted - its an https encrypted
      High Security Password Generator.

      What makes these perfect and safe?

      Every one is completely random (maximum entropy) without any pattern, and the cryptographically-strong pseudo random number generator we use guarantees that no similar strings will ever be produced again.

      Also, because this page will only allow itself to be displayed over a snoop-proof and proxy-proof high-security SSL connection, and it is marked as having expired back in 1999, this page which was custom generated just now for you will not be cached or visible to anyone else.
      Therefore, these password strings are just for you. No one else can ever see them or get them. You may safely take these strings as they are, or use chunks from several to build your own if you prefer, or do whatever you want with them. Each set displayed are totally, uniquely yours — forever.

      Since its introduction, this Perfect Passwords page has generated a great deal of interest. A number of people have wished to duplicate this page on their own sites, and others have wanted to know exactly how these super-strong and guaranteed-to-be-unique never repeating passwords are generated. The following diagram and discussion provides full disclosure of the pseudo-random number generating algorithm I employed to create the passwords on this page:



      While the diagram above might at first seem a bit confusing, it is a common and well understood configuration of standard cryptographic elements. A succinct written description of the algorithm would read: "Rijndael (AES) block encryption of never-repeating counter values in CBC mode."

      Try reverse engineer that?
      {{ DiscussionBoard.errors[2810035].message }}
    • Profile picture of the author Tyrus Antas
      Originally Posted by gotti3636 View Post

      The problem with using these commercial password makers is that they are easily cracked and reverse engineered by hackers. Instead of trying to hack you without having a clue of what your password is, if they know what password generator you are using then they will run with that instead.
      Minds are also easily reverse engineered

      Tyrus
      {{ DiscussionBoard.errors[2810041].message }}
  • Profile picture of the author PGdealer
    I don't think there is a 100% savety thing in this world . Even our nature air make from god also harmful our body every sec and you was talking a system make by HUMAN ? I don't think so .

    PS : Not an insult but just an opinion ~

    ~TK
    {{ DiscussionBoard.errors[2810376].message }}
  • Profile picture of the author sponsorlist
    That's a nice site, if you trust that the algorithm they use is truly random and connection secure. I'd still use most of the time my head to "generate" new passwords.

    But password security and password strength are really different things. Most of the times it doesn't matter how strong your password is, as long as it's not straight from the dictionary. The real threat for password security is if you are using the same password in more than 1 place, or if you store the password somewhere in plaintext. Therefore often the best password is something that you can remember but not too easy one.

    For something like Linux root passwords it makes sense to use longer and more random passwords. But if someone gets access to actual hash to be able to try cracking it, that means your system is already compromised and there's often other ways to find out the password even without cracking the hash.

    Here's some good reading Pick a Safe Password -- a strategy for safe secure computing : wolfram.org
    {{ DiscussionBoard.errors[2811228].message }}
  • Profile picture of the author SirHarrrison
    I stick with my own method and type my passwords in french, with no accents. Nobody has ever accessed any of my accounts, not even my facebook.
    Signature

    "This is what happens when an unstoppable force meets an immovable object."

    Thank you,
    Harrison

    {{ DiscussionBoard.errors[2811900].message }}
  • Profile picture of the author Matt Ward
    I make random passwords out of letters/symbols/etc and write them all down on a piece of paper. I guess I'll really be screwed if my house burns down or someone steals it, haha.
    Signature
    "Keep moving forward."
    {{ DiscussionBoard.errors[2812075].message }}

Trending Topics