frustrate shouldservers

Anders Holmberg anders at pipkrokodil.se
Fri Feb 3 23:00:35 UTC 2017 

Hi!
So how do one get a secure password?
I don’t know nothing about this so i am open to any clarification.
/A
> 2 feb. 2017 kl. 19:39 skrev Jude DaShiell <jdashiel at panix.com>:
> 
> Hi Tim,
> 
> You need to be careful with that and here's why.  The best thing to begin and end a password with are letters and the reason for that is the 52 possible letter set is larger than the 32 symbols set and also larger than the 10 digits set.  Makes it loger and harder for brute force password cracking that way.
> 
> On Thu, 2 Feb 2017, Tim Chase wrote:
> 
>> Date: Thu, 2 Feb 2017 12:35:11
>> From: Tim Chase <tim at thechases.com>
>> To: Jude DaShiell <jdashiel at panix.com>
>> Cc: blinux-list at redhat.com
>> Subject: Re: frustrate shouldservers
>> I've used a technique that's come to be known as "password
>> haystacks" (see link below) which involves simply padding your
>> good (or even written shoulder-surfable) password out to a reasonable
>> length to make the brute-force cracking all the more complex.
>> 
>> So say my password is "correct horse battery staple".  I might take
>> that and then add 8 periods at the end. Or 10 ampersands.  Or
>> alternate dash-equals-dash-equals as many times as you want. Or
>> whatever secret character or characters you want and however many of
>> them you want.  It's also particularly handy if you have to change
>> your password on a regular basis (I usually just change the haystack
>> characters).
>> 
>> Alternatively, if you use a GUI and "keepassx" is accessible in your
>> screen-reader, it allows you to generate strong passwords, keep them
>> safe behind one master password, keep them hidden from
>> shoulder-surfing eyes, and will auto-type them into the last window
>> you were in.  This is the solution I use for most passwords (except
>> my master passwords, for which I use the haystack method).
>> 
>> -tim
>> 
>> https://www.grc.com/haystack.htm
>> 
>> 
>> 
>> 
>> 
>> 
> 
> -- 
> 
> _______________________________________________
> Blinux-list mailing list
> Blinux-list at redhat.com
> https://www.redhat.com/mailman/listinfo/blinux-list

More information about the Blinux-list mailing list