 Cartel
join:2006-09-13
Chilliwack, BC
kudos:2 | reply to NOYB
Re: Turbo-charged cracking comes to long passwords So after 3 failed attempts they get locked out....then what?
This seems pointless to me. |
|
 IanPremium
join:2002-06-18
ON
kudos:2 | This discussion isn't about online attacks. |
|
 sivranOpera ex-patPremium
join:2003-09-15
Irving, TX
kudos:1 | reply to NOYB
Sure. Because no one on this particular board reading this particular topic posted the answer, it can't be done.
Right. 
--
Oh, Opera, what have you done? |
|
 ashrc4Premium
join:2009-02-06
australia | reply to andyross
said by andyross: quote:
Cracking really long passwords just got a whole lot faster and easier.
The statement does not imply to what degree this is thought of as achievable for those wishing to participate.
The main stand out feature of the statement being accurate would apply to basic constructed passwords like Word quotes that don't contain nearly any further complexity.
Once we start looking at sufficient key length allowing the program in question to go beyond what is reasonably determined as a safe key length, then complexity will greatly conflict with the statement "easier" into the realm of not achievable.
said by sivran: it can't be done.
Right.
Knowing what is achievable is the only way to answer......that and some serious computer power. |
|
IanPremium
join:2002-06-18
ON
kudos:2 Reviews:
 ·Rogers Hi-Speed
| reply to NOYB
said by NOYB:No one would do that and risk losing credibility until being certain of success. Just because this is a security forum and a discussion on passwords doesn't mean that there are people with multi-GPU rigs ready and willing to spend the time and energy (maxed out GPU rigs burn electricity dollars) to try and crack a hash. Which is why I mentioned that nobody said they would be trying.
--
“Any claim that the root of a problem is simple should be treated the same as a claim that the root of a problem is Bigfoot. Simplicity and Bigfoot are found in the real world with about the same frequency.” – David Wong |
|
|
|
sivranOpera ex-patPremium
join:2003-09-15
Irving, TX
kudos:1 | I would've done it, had I the hardware to do it. 
Alas, my best video card is a GTS 250, and it lives in my Windows 8 desktop. Not exactly an ideal password-cracking set up. Though there was that one guy I read about, who cracked passwords with a single high-end ATI card, in a linux VM runnning on an ESX server. The ESX server I'm planning to build though...will have as basic a GPU as I can get. No room in the budget for something that won't be used 99% of the time.
--
Oh, Opera, what have you done? |
|
| reply to Ian
Absolutely! Need to raise that entropy. 
I actually advocates easy to remember passwords by names and/or dates. But "increase the entropy".
For example, if I were a Detroit baseball Tigers fan, and my most memorable moment was their 83 world series. I might have a password something like Go!Tigers83. But this is "low entropy". Instead, I might make it G0!83T1gers. To further extend this, if I use this for all my websites, I might add first character of the site to the end and second character of the site name to the beginning. Yahoo.com becomes oG0!83T1gersy , google's password is not eG0!83T1gersg. |
|
