It seems that you're using an outdated browser. Some things may not work as they should (or don't work at all).
We suggest you upgrade newer and better browser like: Chrome, Firefox, Internet Explorer or Opera

×
Community
General discussionHow to tell if your password is safe(61 posts)(61 posts)
(61 posts)
Pages:
1
2
3
4
5
This is my favourite topic
Posted June 14, 2018
And of course there are relevant xkcd comics about this topic:

about strong passwords:
https://xkcd.com/936/

about reality:
https://xkcd.com/538/
Posted June 14, 2018
avatar
paladin181: Sounds like something an idiot would use on his luggage...
avatar
Telika: This truly happened to me this week, with an almost as basic password (except with capitals, letters, digits requirement).

Just installed a new computer to the director, i mentionned the temporary placeholder password i had set up, and was told very seriously "ah it's also the password i use at home". I cringe.
Seriously?
Posted June 14, 2018
How to TELL your password is safe?
Well, you just don't! xD
Posted June 14, 2018
Password123 is the King of passwords.
Posted June 14, 2018
There's not enough links to this already so I'm going to link to it yet again:

https://xkcd.com/936/

:)
avatar
BranjoHello: How to TELL your password is safe?
Best safe words to use

Site maybe NSFW.
Post edited June 14, 2018 by drmike
Posted June 14, 2018
You could try the password manager Keepass.
It shows your pw strenght with a bar.
Posted June 14, 2018
avatar
phaolo: It shows your pw strenght with a bar.
Always been iffy of those.

They're just looking for certain patterns, the ones who write the scripts are also using.

edit: Interesting list: https://www.huffingtonpost.com/entry/2016-most-common-passwords_us_587f9663e4b0c147f0bc299d
Post edited June 14, 2018 by drmike
Posted June 14, 2018
avatar
drmike: Always been iffy of those.
They're just looking for certain patterns, the ones who write the scripts are also using.
edit: Interesting list: https://www.huffingtonpost.com/entry/2016-most-common-passwords_us_587f9663e4b0c147f0bc299d
Well, it's just an estimation.
Still better than some insecure online tool.

If I try those passwords, Keepass shows the lowest bar ever XD
Except for "18atcskd2w" and "3rjs1la7qe". Why are those considered weak too? O_o
Post edited June 14, 2018 by phaolo
Posted June 14, 2018
avatar
phaolo: Except for "18atcskd2w" and "3rjs1la7qe". Why are those considered weak too? O_o
No capital letters in there. They're all lower case.

My passwords are fairly easy to remember. The names of 2 of the three ex fiancees with a number in between with random letters capitalized. Remembering things is some times an issue.
Post edited June 14, 2018 by drmike
Posted June 14, 2018
avatar
phaolo: Except for "18atcskd2w" and "3rjs1la7qe". Why are those considered weak too? O_o
avatar
drmike: No capital letters in there. They're all lower case.
No, I didn't mean: "Why are they weaker than other 10 char passwords".
I meant "Why are those 2 among the weakest passwords ever?".
It seems strange to me that many people used that same random pattern.
Also, many crappier pws exist before those.
Post edited June 14, 2018 by phaolo
Posted June 14, 2018
avatar
muntdefems: correcthorsebatterystaple and you're good to go.
Yeah I am using that too everywhere, I read somewhere it is the most secure password ever. Eat that, hackers and crackers and slackers!
Posted June 14, 2018
avatar
drmike: No capital letters in there. They're all lower case.
avatar
phaolo: No, I didn't mean: "Why are they weaker than other 10 char passwords".
I meant "Why are those 2 among the weakest passwords ever?".
It seems strange to me that many people used that same random pattern.
Also, many crappier pws exist before those.
Sorry, I missed understood.

They're defaults of one of the spambots:

http://www.gizmodo.co.uk/2017/01/2016-top-passwords/

I did not know that either. Darn good way to check to see if we've got real accounts and which ones are spambot defaults.

edit: Would be interesting to know which bots use them.
Post edited June 14, 2018 by drmike
Posted June 14, 2018
avatar
drmike: They're defaults of one of the spambots:
http://www.gizmodo.co.uk/2017/01/2016-top-passwords/
I did not know that either. Darn good way to check to see if we've got real accounts and which ones are spambot defaults.
Oh lol, interesting.
Btw, I guess the spambots devs will just update (or already did) the scripts to use random-generated pws.
Posted June 14, 2018
I have Norton's password vault. It's supposed to have an autofill feature similar Chrome's but also has a password generator. Oddly enough, it can't store its own password to open it up.
Posted June 14, 2018
avatar
phaolo: Btw, I guess the spambots devs will just update (or already did) the scripts to use random-generated pws.
Probably not. SpamAssassin, an anti spam email tool, has been using the same filters for years, has them public on their website, and we have seen little changes.

edit: Oh and my moms are coming back with "DUHs!" this morning. Apparently it;s common knowledge.
Post edited June 14, 2018 by drmike
Pages:
1
2
3
4
5
This is my favourite topic
Community
General discussionHow to tell if your password is safe(61 posts)(61 posts)
(61 posts)