A short remark...

Greetings to everyone, I have a short remark here.

As usual, I only write when I've something to share. Therefore, I rarely update this site.

Meanwhile, I would suggest you to subscribe for updates by typing in your e-mail address in the text box provided at the side bar so that you will receive the updates once I'm back. Don't worry, no spamming. :)

Just chill while waiting for some interesting topics or issues.

Thursday, May 18, 2006

Is your password hack-able?

Yeah, once again I managed to crack another password. Now, it's a password belongs to one of the Technical Assistant (TA) in my college. I able to crack it not because I'm smart or whatever but it's due to the TA's weak password.

Therefore, this posting focuses on how to have a strong password.

The following are the characteristics of a strong password that will take years to crack unless the cracker use a supercomputer to crack it. Your password:

  • Has to be more than eight charcters
  • Shall not be a word
  • Must be the combination of UpperCaSe, $ymbol$ and numb3r5.
The typical password cracking will be something like this:
  • Searching the dictionary to get the same code that belongs to the password (Hash)
  • Brute-force cracking: Running combinations with numbers.
  • If the hacker still can't get it, the last choice will be using brute-force method with the character set including alphabets, numbers and symbols (The longer it is, the more time it takes, probably year(s) except using supercomputer.)
How ever social-engineering also is another manual method. Therefore, no matter what it is, NEVER accidentally give your password's charcteristics to anyone. E.g. the hacker might ask some questions to know more about your password.

Therefore, please follow the guidelines provided. You're identification is very valuable even if you are not in higher positions.

I'm not a hacker. Even a kid who knows how to use Google can be a hacker.

7 comments:

Mazlina Yusof said...

socail engineering is good. reverse social engineering is better.. hahaha.... u rocks man...:D

b0dY said...

OI IHSAN!

b0dY said...

weehh blog buat cantik2 laa..gila pemalas!! add me on ur msn..bodieee@hotmail.com

b0dY said...

UPDATE!! u fool!

b0dY said...

hello mazlina

CincauHangus said...

hoey. why dun let anonymous comments? now i kenot post my blog addy here.. hahahaha.. anyways.. im looking for some help with WEP and wifi hacking. accept the challenge, my mentee?

CincauHangus said...

anyways: aaronho.bloglogo.com