password conundrums indeed
I just made the wrong call on the latest snowstorm (Janus?) and banged in from work( Too old for that kinda stuff).
So I was just reading a story @http://www.propublica.org/article/privacy-tools-how-to-build-better-passwords?utm_source=et&utm_medium=email&utm_campaign=dailynewsletter that has me a bit confused.
The author recommends a system for choosing passwords called Diceware (http://world.std.com/~reinhold/diceware.html) that seems rather well dicey. It recommends rolling five dice 4 or 5 times, notating the results and picking words from a list w/ 7700 words matching the results. “correcthorsebatterystaple” would be a recommended password and stronger than one generated by the usual password utilities (which I do not use). A site linked to:
https://dl.dropboxusercontent.com/u/209/zxcvbn/test/index.html says it would take 65 years to crack.
This same site says “four financial institutions” would take 91 years. This password I got from an article from linked to in a thread(http://windowssecrets.com/forums/showthread//158452-Dumb-passwords-yet-again) started by Ruirib. I am finding this hard to believe especially on recent news on the feasibility of new techniques of dictionary attacks(sorry no link) ahh found it http://arstechnica.com/security/2013/10/how-the-bible-and-youtube-are-fueling-the-next-frontier-of-password-cracking/3/
Maybe I lack imagination but I find it really hard to believe that correcthorsebatterystaple is any kind of secure password. What am I missing here??
🍻
Just because you don't know where you are going doesn't mean any road will get you there.
