Categories
Security

Ah! Hello there Big Brother!

Before surveillance fatigue kicks in and you hit the close button on your browser, remember that the NSA are probably right now examining all the open internet connections on your router because you loaded this Youtube video of a man talking at a security conference.

Yeah, you’re welcome.

Categories
Security

Speedy password cracking

Earlier today Jeff Atwood tweeted:

you should *really* be scared if your passwords are all lowercase. 12 chars in 75 days on my box..

He was referring to his post on speed hashing where a video card GPU is used to calculate the hash of any given text. Compared to a computer CPU it does it much faster.

all 6 character password MD5s 47 seconds
all 7 character password MD5s 1 hour, 14 minutes
all 8 character password MD5s ~465 days
all 9 character password MD5s fuggedaboudit

It’s honestly scary and really time for everyone to use pass phrases. They’re not perfect either but they’re better because they’re longer and easier to remember. Some of my passwords are not phrases yet, this pass phrase generator (or this one) should help make it easier to change those.


* obligatory xkcd cartoon.