Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Time to change your password

  • 08-08-2017 2:47pm
    #1
    Registered Users, Registered Users 2 Posts: 7,499 ✭✭✭


    ...but not for the usual reason. The guy who told us to create convoluted passwords in the first place, Bill Burr (but a less funny one to the standup), has come out and said that he got it wrong.

    It seems he underestimated how ridiculous people would be when it came to creating a secure password, or p$ssw0rd to some. That and it's actually more difficult to crack a random string of words than a jumbled mess of characters.

    AH, have you been one step ahead when it comes to password management? Are you still in the camp that believes that "qwerty" is as good as it gets? Or have you now got to come up with a memorable four word sentence?

    WSJ article

    🤪



Comments

  • Registered Users, Registered Users 2 Posts: 36,170 ✭✭✭✭ED E


    If you've still got a password you're behind the curve, its a passphrase you want.


  • Closed Accounts Posts: 12,452 ✭✭✭✭The_Valeyard


    Just stick Gandalf in front of it


  • Registered Users, Registered Users 2 Posts: 3,180 ✭✭✭Mena


    Passwords have been out for years. Paraphrase sentence is where it's at.


  • Moderators, Science, Health & Environment Moderators, Sports Moderators Posts: 24,144 Mod ✭✭✭✭robinph




  • Registered Users, Registered Users 2 Posts: 3,739 ✭✭✭scamalert


    password's are safe in general no need to reinvent the wheel, in the movies they make it look's like couple clicks and im in :pac: in reality to crack 8-10 digit password nowadays its almost impossible.

    for example if you try to brute force wifi router by virgin media etc, after 4 attempts wrong think it goes into lock down for 5 minutes, if you still try it goes to 15 minutes or smth to that term.And thats simple protection thats needed its not difficulty of password but limiting attempts to crack it that makes it virtually impossible be it gmail or most other services, also two way authentication nowadays where it asks for either passphrase or random code sent to mobile makes it that extra difficult.

    since computers nowadays are fast enough to process couple hundred passwords on regular pc , but if one is limited to 3-5 attempts people look for other ways in.


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 1,852 ✭✭✭Steve F


    Just use "incorrect" as your password
    Then if you forget it,whatever you are trying to log in to tells you your password!!








    I'll get me coat


  • Registered Users, Registered Users 2 Posts: 8,809 ✭✭✭Hector Savage




  • Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 93,565 Mod ✭✭✭✭Capt'n Midnight


    ED E wrote: »
    If you've still got a password you're behind the curve, its a passphrase you want.
    nope - no use against a dictionary attack as essentially all it does is replace an alphabet of 26 characters with a long word with an alphabet with thousands of characters but with a far shorter word.


  • Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 93,565 Mod ✭✭✭✭Capt'n Midnight


    scamalert wrote: »
    password's are safe in general no need to reinvent the wheel, in the movies they make it look's like couple clicks and im in :pac: in reality to crack 8-10 digit password nowadays its almost impossible.

    for example if you try to brute force wifi router by virgin media etc, after 4 attempts wrong think it goes into lock down for 5 minutes, if you still try it goes to 15 minutes or smth to that term..
    That only applies if you knock politely at the front door. If you sneak round the back its a different story. If someone steals a list of encrypted passwords from a website they can take all the time they want.


    see if it's public knowledge that a web site has leaked your password https://haveibeenpwned.com/



    BTW things like WPS vulnerabilities in routers means you can keep trying and some logon web page attacks can sidestep logons, fake AP's can steal your credentials

    and there is always this
    https://www.explainxkcd.com/wiki/index.php/416:_Zealous_Autoconfig


  • Registered Users, Registered Users 2 Posts: 1,465 ✭✭✭Irish Halo


    Lastpass or 1Password


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 33,962 ✭✭✭✭odyssey06


    I don't know what this thread is about. When the computer asks me for password, I type password. Works every time.

    It's as secure as the Gates of Moria... speak friend, and enter.
    https://www.youtube.com/watch?v=dsBuDQ5Y8Es

    "To follow knowledge like a sinking star..." (Tennyson's Ulysses)



  • Registered Users, Registered Users 2 Posts: 2,166 ✭✭✭Are Am Eye


    Atm pin easier to guess. You get three trys. There are 210 combos.


  • Closed Accounts Posts: 26,658 ✭✭✭✭OldMrBrennan83


    This post has been deleted.


  • Moderators, Category Moderators, Music Moderators, Politics Moderators, Society & Culture Moderators Posts: 22,360 CMod ✭✭✭✭Dravokivich


    Patww79 wrote: »
    Lastpass makes up my passwords. Luckily my password for lastpass is 1234 so I don't forget it.

    Now all I need is your login ID.


  • Closed Accounts Posts: 26,658 ✭✭✭✭OldMrBrennan83


    This post has been deleted.


  • Registered Users, Registered Users 2 Posts: 8,551 ✭✭✭AllForIt


    allonehastodoisthinkofaneasytorememberpassphrase


  • Registered Users, Registered Users 2 Posts: 7,221 ✭✭✭circadian


    At least 16 character comprising of numbers, letters and special characters. Never the same in any two places.

    Anyone who thinks that someone is sitting on their laptop or desktop PC and using it to try and crack passwords is mistaken. If they aren't using backdoors and database dumps the brute force attacks are done on bitcoin rigs, at the least.


  • Registered Users, Registered Users 2 Posts: 3,739 ✭✭✭scamalert


    whats the point of having some long ass password if system can be brute forced to try it million times.

    atm example is good thou its not 210 tries but 10^4. which is 10,000.

    since only 3 tries are allowed more then likely anyone guessing would get locked out and thats how proper system should work.

    Since theres documentary on youtube about guy half decade ago or so when logged into apple store or whatever crap it is noticed digits at the top of the page and by changing numbers he could jump to other's people account's < now that's a hole, think guy got locked up even thou disclosed it when found :cool: quite easy mistake that show's password strength isn't an issue.


  • Registered Users, Registered Users 2 Posts: 735 ✭✭✭Django99


    Are Am Eye wrote: »
    Atm pin easier to guess. You get three trys. There are 210 combos.

    Why 210? Surely it's 10,000?


  • Closed Accounts Posts: 3,647 ✭✭✭lazybones32


    I used change mine regularly but stopped since i stopped doing important stuff online and closed accounts, changed cards, etc. What russian mobster wants to hack my boards account? I post nothing of value...nothing!


    P.S. I'm not clicking on the link you supplied op, it's an anagram of 'sjw' and i don't care what they say...


  • Advertisement
  • Closed Accounts Posts: 558 ✭✭✭Biggest lickspittle on boardz


    Public safety announcement: Be very wary of using those 'HOW SAFE IS MY PASSWORD' websites that return how strong your password is. Some are harvesting your passwords for naughty purposes.


  • Registered Users, Registered Users 2 Posts: 2,166 ✭✭✭Are Am Eye


    Django99 wrote: »
    Why 210? Surely it's 10,000?

    Sorry, I was rounding down.


  • Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 93,565 Mod ✭✭✭✭Capt'n Midnight


    ^^^^

    Check if your credit card has been used online
    http://ismycreditcardstolen.com/


  • Moderators, Science, Health & Environment Moderators, Sports Moderators Posts: 24,144 Mod ✭✭✭✭robinph


    Django99 wrote: »
    Why 210? Surely it's 10,000?

    It will be a bit less as they won't allow you to have 1234, 0000, 1111, 2222, and other sequences like that.


Advertisement