Password strongs
your password should be a long string of random characters, the longer the better. Is it really necessary to have passwords that would take a few quadrillion years to crack and use those for everything, or can you get away with weaker ones for some things? And what about those sites—even some credit card and banking sites—that force you to use only upper and lower case letters and numbers? Are those passwords strong enough? The answers may surprise you.
First of all, it's not necessary to have passwords that require half an eternity to crack, no matter what the experts say. If your password is complex enough that it's unlikely it can be cracked before you change it, chances are that's strong enough. Let's say the password for your on-line banking site is MyPass21; a brute force attack against your account would take around 253 days--call this the password recovery window (PRW) - if an attacker was using a fast, dual processor PC (see charts - the complete set of them is available on the Password Recovery Speeds website). If you change your password every six months, it's highly unlikely that anyone would be able to compromise your account using brute force.
What about on-line magazine sites, photo sharing sites, and the like? These often require “registration,” mainly so they can legally send you email solicitations. They ask for your first name, maybe an email address, and want you to create a password. There's no danger that any personal identity or financial information is going to be revealed if someone hacks your account, so who cares? In this case, a weak password is strong enough. I call these things “nuisance passwords” and I always use the simplest, most easy-to-remember password I can get away with, usually the same as my login name. For example, my login for one site is shilive and my password is ShI lIvE..
But You Cand Find which site it ‘s belongs too.lolzzzzzzzzzzzz
Password Recovery Speeds
How long will your password stand up
This document shows the approximate amount of time required for a computer or a cluster of computers to guess various passwords. The figures shown are approximate and are the maximum time required to guess each password using a simple brute force "key-search" attack, it may (and probably will) be possible to guess correctly without trying all the combinations shown using other methods of attack or by having a
"lucky guess".
if your password has 10 Charcters ,Assume all characters are as a numeric ,then
Just See other possible combinations
Source...http://www.lockdown.co.uk
Posts
No comments:
Post a Comment