Jump to content

On the h4xx0ring of p4sswordZ


sunrat
 Share

Recommended Posts

Dan's Data is one of my old favourite sites, Aussie, kinda geeky, with hints of XKCD and rather addictive. And lots of really useful tips. Although his posts are less frequent lately, there's a goldmine to explore.

I just happened across this article, a fascinating insight on passwords. Put your protective sarcasm goggles on. :)

 

On the h4xx0ring of p4sswordZ

  • Like 1
Link to comment
Share on other sites

true, sunrat, most folks can't password for nothin'

 

adam, interesting, but looks like the rsa-key, and like the rsa-key, a second form of id should be required

(so the key holder does not automatically become the authenticated user, in the case of the lost hardware key.)

Link to comment
Share on other sites

  • 2 weeks later...

watt i should've said is, unlike the rsa-key which requires another password, the sqrl thingy has the potential of saying, just because i am, i am the authorized owner and therefore believe me.

Link to comment
Share on other sites

Yes, and the model behind SQRL makes it extremely difficult (impractical to attempt) to spoof your identity.

 

Unless someone commandeers your device. they would have to get into the application that contains your identity.

 

Adam

Link to comment
Share on other sites

V.T. Eric Layton

I use reverse psychology when choosing a password because I figure all the hackers are expecting something complicated these days, so I use passwords like "password1", "eric1", and "drowssap". ;)

Link to comment
Share on other sites

V.T. Eric Layton

I'm sure everyone realizes my comment above was most definitely tongue-in-cheek. In actuality, I use 128 character minimum passwords created on a CRAY system with random number/character generators using specialized string theorems in conjunction with advanced logarithmic functions. They are so secure even I can't remember them. ;)

Link to comment
Share on other sites

They are so secure even I can't remember them. ;)

Well, that will prevent you from accidentally pissing off everyone you know when you are in a drunken stupor.

Try that on Facebook!

  • Like 1
Link to comment
Share on other sites

I'm sure everyone realizes my comment above was most definitely tongue-in-cheek. In actuality, I use 128 character minimum passwords created on a CRAY system with random number/character generators using specialized string theorems in conjunction with advanced logarithmic functions. They are so secure even I can't remember them. ;)

 

Everyone knows string theory is the biggest scientific scam since Tesla's earthquake machine.

 

write your passwords on a 512 qbit quantum computer for REAL security.

 

Adam

Link to comment
Share on other sites

dunno - he took his magnetic resonator to a construction site, set it to hum at the primary freq of the iron beams and pretty much toppled the site (or almost did, may have stopped short.)

Link to comment
Share on other sites

V.T. Eric Layton

Tesla was a character from history with whom I would love to go back in time and have a nice dinner and some conversation. :yes:

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...