length of pw
in [Cryptography]
|
Prev: Call for papers: ISP-10, Orlando, USA, July 2010
Next: Question about polymorphic encryption used by some company
From: Paulo Marques on 26 Feb 2010 09:57 Gomar wrote: > On Feb 24, 2:33 pm, Paulo Marques <pmarq...(a)grupopie.com> wrote: >>> 5 - 931151402 - 3 years, 7 months >> Updating the table to some actual real numbers instead of fictional ones: >> >> 5 - 916132832 / 10000/s -> ~ 1 day >> >> All this is for a completely random 5 character combination, not a > > You are correct ONLY if you know that the pw is 5 characters. > Otherwise, you have to start at 1 and go up to 5. > run the programs in my links, and enter 1 as min, 5 as max. See why people think you're a troll? All the 4 letter passwords cost as much as a single letter of the 5 letter passwords, which is around 1/62 of the cost. You're trying to defend your point in the difference between 916132832 and 931151402. Ok, fine, it's not really one day and 87 minutes, it's really one day and 112 minutes :P Remember that one day is the time to try _all_ the "up to 5 letter" combinations. The expected time to find your password is just half that. -- Paulo Marques - www.grupopie.com "All I ask is a chance to prove that money can't make me happy."
From: Gomar on 28 Feb 2010 22:47 On Feb 25, 10:55 pm, bmearns <mearn...(a)gmail.com> wrote: > > > Ok, so it takes 6 months to crack a 5 character pw. Fine. > > Perfect, so your original assertion which started this thread, that a > 5 character password is "good enough", is demonstrably wrong. Why? If it takes even the CIA, FBI, NSA 6months to crack my 5 character pw, then I am happy with it. I suppose the cracking program has to run 24hrs non-stop. If so, it would take away valuable time and resources from the those fine organizations which have nothing else better to do than hack into my email accounts, files, my diary, etc. > > > government agency couldn't crack your 5 character password by the end > > > of the week, you're just plain stupid. no, anyone who tries to is. > > > I'll just use a foreign alphabet, Hindi, Greek, Chinese or Arabic or a > > mixture of 10 different languages. > > and so is the difficulty of memorizing it. sorry, not for people who actually speak those languages it's not.
From: Gomar on 28 Feb 2010 22:56 On Feb 25, 11:05 pm, bmearns <mearn...(a)gmail.com> wrote: > > First, there are ways around this. For instance, I have a core 10 > character very-secure password that I've comitted to memory. > > Granted, it is a bit of a nuisance to need access to an implementation > of the hash whenever I need to log in. Say what? None of this makes any sense whats so ever. I wont be bothering with any hash, hashish, smack, MaryJane, grass, blow, snow, LSD or whatever recreational drugs you are into. I have no intention of memorizing 10 different passwords of 10 characters each. I just use my beloved dog's name who was run over by a car 6 years ago. I love you Benji! Long live Benji, the bestest dog in the world.
From: unruh on 28 Feb 2010 23:00 On 2010-03-01, Gomar <romphotog(a)gmail.com> wrote: > On Feb 25, 10:55?pm, bmearns <mearn...(a)gmail.com> wrote: >> >> > Ok, so it takes 6 months to crack a 5 character pw. ?Fine. >> >> Perfect, so your original assertion which started this thread, that a >> 5 character password is "good enough", is demonstrably wrong. > > Why? If it takes even the CIA, FBI, NSA 6months to crack my 5 > character pw, > then I am happy with it. I suppose the cracking program has to run > 24hrs non-stop. Except that estimate is and has been shown to be wrong. > If so, it would take away valuable time and resources from the those > fine organizations > which have nothing else better to do than hack into my email accounts, > files, my diary, etc. > >> > > government agency couldn't crack your 5 character password by the end >> > > of the week, you're just plain stupid.
From: bmearns on 1 Mar 2010 06:32
On Feb 28, 10:47 pm, Gomar <rompho...(a)gmail.com> wrote: > On Feb 25, 10:55 pm, bmearns <mearn...(a)gmail.com> wrote: > > > > > > Ok, so it takes 6 months to crack a 5 character pw. Fine. > > > Perfect, so your original assertion which started this thread, that a > > 5 character password is "good enough", is demonstrably wrong. > > Why? If it takes even the CIA, FBI, NSA 6months to crack my 5 > character pw, > then I am happy with it. I suppose the cracking program has to run > 24hrs non-stop. > If so, it would take away valuable time and resources from the those > fine organizations > which have nothing else better to do than hack into my email accounts, > files, my diary, etc. > > > > > government agency couldn't crack your 5 character password by the end > > > > of the week, you're just plain stupid. > > no, anyone who tries to is. > > > > > > I'll just use a foreign alphabet, Hindi, Greek, Chinese or Arabic or a > > > mixture of 10 different languages. > > > and so is the difficulty of memorizing it. > > sorry, not for people who actually speak those languages it's not. Troll, I'm done with this conversation. For anyone else reading this thread, the point is that an alphabet containing more letters means each letter represents more information, and is therefore more difficult to remember. I'm not saying it's impossible, obviously, but a 5 character password from an alphabet of several hundred characters (for example) is both safer and harder to memorize than a 5 character English-alphabet password. -Brian |