Account Password Security
" 8675309? Zed's dead baby. Zed's Dead. http://www.pathofexile.com/forum/view-thread/35331 ^ Take a look at GGG's new youtube segment which, features submitted player characters. This is a weekly segment where I was actually featured!!! Last edited by Big_Z#1648 on Jun 9, 2012, 11:28:57 PM
|
|
|
Have this instead of silly xckd
Spoiler
Last edited by jikavak#3807 on Jun 10, 2012, 4:04:49 AM
|
|
|
ok, nice.
ty guys ;) i'm using little bit off leetspeak Last edited by DoctorD80#0713 on Jun 10, 2012, 8:52:27 AM
|
|
"Good to know that my passwords take about 14 million trillion centuries to guess at 1,000 guesses per second :) Closed Beta/Alpha Tester back after a 10-year hiatus.
First in the credits! |
|
" This assumes an exhaustive online brute force, which is simply the maximum time.. the minimum time is a different, much much smaller value. If your password is less than 12 characters long it's weak. One must assume that if someone is going to attack passwords, they are going to do it by attacking the hashed values using a password cracking array after having downloaded it via a hack... Tr0ub4d0R&8 reports 1.8 years CorrectHorseBatteryStaple reports 2500 million trillion years Furthermore your password is now SUBSTANTIALLY weaker because they would only have to search the space that reports it as 14.14 million trillion centuries... and while nobody is going to read this post then apply it to the algorithm to crack your particular password, it probably went from 14 million trillion years to like... a week or a month offline :P If you have account problems please [url="http://www.pathofexile.com/support"]Email Support[/url]
| |
" ya passwords with whole words in them are bad |
|
|
? long passwords with whole words in them have been shown to generally be easier to remember and since they can be longer, are much much harder to break, even given the most optimal circumstances.
If you have account problems please [url="http://www.pathofexile.com/support"]Email Support[/url]
| |
|
A password that contains a word isn't bad. A password that is a word is bad, as it falls prey to the very standard, old-school dictionary attack.
Closed Beta/Alpha Tester back after a 10-year hiatus.
First in the credits! |
|
|
I suppose that if you did do a dictionary attack on a 4 word string it would return correcthorsebatterystaple in like... 10 seconds.
So given that word stringing is susceptible to dictionary attacks, but is strong against brute force... I'd then say the strongest password goes back to a complex passphrase: correct,horsebatterystaple! where the punctuation makes sense so it's easy to remember. Passphrases have been suggested for a long time, albeit they require punctuation to avoid dictionary attacks. If you have account problems please [url="http://www.pathofexile.com/support"]Email Support[/url]
| |
" ... /facepalm The second edition of the Oxford English dictionary lists 171,476 unique words. Thus, a 4 word string has approximately 864,600,000,000,000,000,000 permutations. At 1,000 guesses per second it would take 1,644,970,145,391 years to cycle through those permutations. That’s 1.6 trillion years. Saying a dictionary attack would take 10 seconds is just slightly incorrect. TehHammer is not a crime!
|
|
