Actuarial Outpost
 
Go Back   Actuarial Outpost > Actuarial Discussion Forum > Software & Technology
FlashChat Actuarial Discussion Preliminary Exams CAS/SOA Exams Cyberchat Around the World Suggestions


Fill in a brief DW Simpson Registration Form
to be contacted when new jobs meet your criteria.


Reply
 
Thread Tools Display Modes
  #11  
Old 08-18-2010, 12:21 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,216
Default

According to this website:

http://howsecureismypassword.net/

It would take 3 quadrillion years to hack the password g943UJ$7eA7d52ax.
__________________
ahow
Badass
Reply With Quote
  #12  
Old 08-18-2010, 12:22 PM
vividox's Avatar
vividox vividox is offline
Lead Guitarist
Non-Actuary
 
Join Date: Dec 2008
Favorite beer: Avery Mephistopheles
Posts: 56,726
Default

How long would it take to hack the password 'password'?
__________________
This post was crafted using a special blend of herbs and sarcasm.
Reply With Quote
  #13  
Old 08-18-2010, 12:23 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,216
Default

Quote:
Originally Posted by vividox View Post
How long would it take to hack the password 'password'?
From the above link: Your password is
One of the 500 most common passwords
It would be cracked almost instantly
__________________
ahow
Badass
Reply With Quote
  #14  
Old 08-18-2010, 12:26 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,216
Default

I read an interesting article recently about hacking passwords. It mentioned that instead of going to one account and typing in a million passwords (which would probably lock the account), they choose common passwords like 'password', '159753', or the name of the website and try them on a million different usernames. That way they don't get locked out of an account and chances are at least a couple of the million have one of those three passwords.
__________________
ahow
Badass
Reply With Quote
  #15  
Old 08-18-2010, 12:28 PM
vividox's Avatar
vividox vividox is offline
Lead Guitarist
Non-Actuary
 
Join Date: Dec 2008
Favorite beer: Avery Mephistopheles
Posts: 56,726
Default

Interesting.

Pretty much any curse word comes up as "one of the top 500 most common passwords".

Simple sentences such as "iambatman" or "ilikecereal" take weeks to solve.

The password "abcdefghijklmnopqrstuvwxyz" apparently would take 16 quintillion years to figure out.
__________________
This post was crafted using a special blend of herbs and sarcasm.
Reply With Quote
  #16  
Old 08-18-2010, 12:31 PM
yoyo's Avatar
yoyo yoyo is offline
Member
CAS
 
Join Date: Dec 2001
Posts: 20,667
Default

Ok, so say I'm at your mom's house and I need an id and pw. I use her computer (which has none of my personal stuff on it except her crazy fetish vids I did with her) to navigate to a site to get my id/pw info from LastPass?
Reply With Quote
  #17  
Old 08-18-2010, 12:37 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,216
Default

Quote:
Originally Posted by yoyo View Post
Ok, so say I'm at your mom's house and I need an id and pw. I use her computer (which has none of my personal stuff on it except her crazy fetish vids I did with her) to navigate to a site to get my id/pw info from LastPass?
Yep, you can do it that way if you are on a computer that you somewhat trust. If you are on a public terminal at the airport or something, you can also get a Yubikey or use Sesame on a USB thumbdrive to do double authentication (they know its you because they recognize the USB key AND the master password). It has a virtual keyboard built in so you can avoid keyloggers as well for typing your master password.

Here are the features for the free version:
https://lastpass.com/features_free.php

And the $12/yr premium version:
https://lastpass.com/features_premium.php
__________________
ahow
Badass
Reply With Quote
  #18  
Old 08-18-2010, 12:38 PM
apparition's Avatar
apparition apparition is offline
Member
 
Join Date: May 2009
Posts: 1,093
Default

Quote:
Originally Posted by E View Post
I think it really boils down to this:

Windows users should use LastPass.

Mac users should use 1Password.

Both are great. They not only increase your information security, they seriously increase productivity.

Example: I want to sign into my bank. I press a keyboard shortcut, start typing the first few letters of the site. 1Password searches my password database. It shows me the bank. I hit enter. It not only goes to that site, it fills in my username and password. I'm in.

I don't know my passwords, and I don't care. They're super long and virtually impossible to crack using modern brute force methods. They're also different for all my sites. But I never have to type them, so I don't care.

Security and productivity.
all you need for a huge disaster is that you either mess up this master password or it somehow gets compromised..

that is zero diversification.. messing up one password is one disaster, messing up this master password is a master disaster..
Reply With Quote
  #19  
Old 08-18-2010, 12:41 PM
ahow's Avatar
ahow ahow is offline
Member
CAS
 
Join Date: Nov 2003
Location: Burninating the Indiana
Favorite beer: Stone 11th Anniversary Ale
Posts: 12,216
Default

Quote:
Originally Posted by apparition View Post
all you need for a huge disaster is that you either mess up this master password or it somehow gets compromised..

that is zero diversification.. messing up one password is one disaster, messing up this master password is a master disaster..
On LastPass anyway, you can create multiple sub-profiles with different master passwords, so you could have a master password for banks, one for social media, one for work stuff, etc. If one of those gets compromised, at least is it only for that segment. Assuming you have a strong set of master passwords and aren't at gunpoint, it should be pretty safe and diverse.
__________________
ahow
Badass
Reply With Quote
  #20  
Old 08-18-2010, 12:58 PM
yoyo's Avatar
yoyo yoyo is offline
Member
CAS
 
Join Date: Dec 2001
Posts: 20,667
Default

thx for the tips
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


All times are GMT -4. The time now is 03:37 AM.


Powered by vBulletin®
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
*PLEASE NOTE: Posts are not checked for accuracy, and do not
represent the views of the Actuarial Outpost or its sponsors.
Page generated in 0.25179 seconds with 10 queries