 |
Re: [RC] [RC] Whats New with SERA - password safety - Mike SofenEssentially all password systems are case sensitive and allow for numbers
and symbols. Using mixed upper and lower case doubles the possible
combinations for a given password (making it twice as hard to crack), e.g.,
"horsesandmules" would become "HorsesAndMules". Adding a leading or middle
"7" expands the possible combinations again ("7HorsesAndMules" or
"HorsesAnd7Mules").
But the best (and easiest to remember) approach is to replace certain
letters with a symbol that matches (or sort of matches) the shape or intent
of the letter. So "HorsesAnd7Mules" could become "H0r$e$@nd7Mu1e$". Note
the second character is a zero not the letter o. S's are replaced with
dollar signs, the letter a is replaced with the @ symbol.
Most password crackers use a large dictionary of standard words and catch
many passwords ONLY due to no symbols being used in the password. You could
easily use a password like "H0r$e$!" will a high probability of safety.
Mike Sofen
-----Original Message-----
From: ridecamp-owner@xxxxxxxxxxxxxxxxx
[mailto:ridecamp-owner@xxxxxxxxxxxxxxxxx]On Behalf Of Ed & Wendy Hauser
Sent: Sunday, February 08, 2004 7:59 AM
To: David LeBlanc; 'Truman Prevatt'; 'Ride Camp'
Subject: Re: [RC] Whats New with SERA
"and user-chosen passwords
tend to be very weak. There's a serious risk here even if your system isn't
compromised. This is why I think the advice to:"
Could you give us some advice as to how to choose passwords that are hard to
guess?
I have heard that while:
"horsesandmules"
would be weak because all the words are in a dictionary
"selumdnasesroh" would be better and "selumdna7sesroh" even better
it may even be easy to remember if you owned 7 horses and mules.
Ed
Ed & Wendy Hauser
2994 Mittower Road
Victor, MT 59875
ranch@xxxxxxxxxxx
406.642.6490
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Ridecamp is a service of Endurance Net, http://www.endurance.net.
Information, Policy, Disclaimer: http://www.endurance.net/Ridecamp
Subscribe/Unsubscribe http://www.endurance.net/ridecamp/logon.asp
Ride Long and Ride Safe!!
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Ridecamp is a service of Endurance Net, http://www.endurance.net.
Information, Policy, Disclaimer: http://www.endurance.net/Ridecamp
Subscribe/Unsubscribe http://www.endurance.net/ridecamp/logon.asp
Ride Long and Ride Safe!!
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|