How Pathetic Is Your Password?

Tue Apr 4, 2006 1:36PM EDT

See Comments (138)

Think putting a "1" on the end of "daisy" is going to stymie crackers intent on breaking your password? Turns out that with a reasonably up-to-date computer, a dedicated hacker should be able to break it, by brute force, in about an hour and a half.

Lockdown.co.uk has a handy document that shows just how secure your password really is, based on its length and the type of characters you use in it (all numbers, letters and numbers, uppercase/lowercase, special symbols, etc.).

Think about your most common passwords, then visit the site. You'll be most interested in the results for a "Class D" attack, which represents somone with a single, very fast PC. (Class E and Class F represent multiple PC attacks and aren't as likely to be involved with someone trying to break into your eBay account.)

As an example, the site notes that a password like "darren" would take all of 30 seconds to break. "Land3rz" would take 4 days. And "B33r&Mug" would take 23 whopping years.

Key to great security isn't just length, but adding in non-traditional characters, too: A great password should be eight characters long (or more), and include at least one number, one uppercase letter, and one special character like an ampersand. To make it easy on yourself, try using the same button on the keyboard in both lower- and uppercase versions. For example: "JjKkIi*8" requires you only hit four different keys (plus Shift), and they're all clustered in a tight group.

Comments on How Pathetic Is Your Password?

Post a Comment

Join in the discussion. Here you'll see the comments in the order they were posted.

  • 1 Posted by schizo_sicko on Thu Sep 3, 2009 9:08PM EDT Report Abuse

    I see my password is not secure enough but i do not keep account #s on it. I am going to change my password immediately. Thank you

  • 2 Posted by prerana_foodqueen on Thu Sep 3, 2009 8:18PM EDT Report Abuse

    i see that today hackers are very good at their work. the simple tips are most uncomplicated yet they will daze hackers.thanks!

  • 4 Posted by mano_a_92 on Thu Sep 3, 2009 7:05PM EDT Report Abuse

    this is so much helpful its the best thank u so much i am changing my password right now thanks again nemO!

  • 5 Posted by mariareba2002 on Thu Sep 3, 2009 7:06PM EDT Report Abuse

    Thanks for some good insight to a common problem. In the day and age of mental health hygiene, patriot acts, a goal of decency...it's reassuring to know that however unsucessfull a subscriber may seem "experts" care enough to overcome apathy or worse "outright exploitation" to share their intellectual property! Good Going

  • 6 Posted by rrraluca on Thu Sep 3, 2009 8:53PM EDT Report Abuse

    well,sounds dangerous enough,people without a tehnical background hardly could imagine is so simple actually to breack a password!Thanks for this precious informations,I`ll forward them to my friends!Best wishes from here:))))))RrAaLlUuCcAa

  • 8 Posted by johnscott80918 on Thu Sep 3, 2009 4:39PM EDT Report Abuse

    I've had the same password for 3 years now and had zero trouble. To further prove my point, my password is

  • 9 Posted by mov2k6 on Thu Sep 3, 2009 7:27PM EDT Report Abuse

    Yes these ideas are very good but what if i use a phrase ... It doesn't need to be transformed or anything ... e.g : "eBay rocks" How about this ?

  • 10 Posted by deathwish01b on Thu Sep 3, 2009 3:39PM EDT Report Abuse

    It would be easier, I think, for web-based email providers to simply add a 3-strikes system like some of the old BBSes had (notably the ones I was a member of). Then it doesn't matter how many passwords you can enter per second, because if you guess wrong three times, your computer is locked out. Mua ha ha!

More Posts: First Prev 1 2 3 4 5 Next Last

Post a Comment

Sign In to Post a Comment