Bookmarks@MarkupDancing
Tags — password
See what's hot on Bookmarks@MarkupDancing, or go to Poppular Tags.
Tricks of the Trade: Cracking passwords with Wikipedia, Wiktionary, Wikibooks etc
saved on 2011-11-03 14:44:28
One effective way of assessing password strength is to try and crack them, and as most of you probably know, dictionary attack is the simplest yet formidable technique for cracking passwords. Now, the problem is: your dictionary has to be as exhaustive as possible. Relying solely on common dictionaries (such as The Collins, Le Larousse, the ones contained in spell checkers, etc) just won't do because these are very limited, whereas basic human nature has us looking around when prompted to choose a password; a lot of people will then choose "belinea" because it's the brand of the monitor sitting in front of their eyes, "abnamro" because it's the bank outside their window, and so on. However, it is very likely that any word you can put your eyes on is already in Wikipedia: try it, it is amazing. A couple of years ago I generated a quick & dirty wordlist from Wikipedia in a dozen of languages. It helped quickly crack countless passwords, a lot of which bruteforcing would never get to. Recently I managed to spare some time in order to generate a new one, inventorying words from 2009 (my old Wikipedia wordlist doesn't even have "twitter", imagine that :-P ) and from a way more comprehensive list of sources:
I used to have one password… » Encryptsolutions
saved on 2011-10-19 12:16:10
Another issue is the username. Most security warnings are related to users having the same password, although it is indeed true, there is also an issue with using the same username everywhere. I would argue it is more important to start with a known username than a known password.
Password misuse at root of hacking
saved on 2011-10-19 08:59:45
48 percent of IT security professionals surveyed have worked for organizations whose network has been breached by a hacker, according to Lieberman Software.The survey paints a vivid picture of password chaos amongst IT staff and apathy about password security amongst their senior management.
Matasano Security - Matasano Web Security Assessments for Enterprises
saved on 2011-08-29 12:00:49
We mean attempts to implement security features in browsers using cryptographic algoritms implemented in whole or in part in Javascript. You may now be asking yourself, "What about Node.js? What about non-browser Javascript?". Non-browser Javascript cryptography is perilous, but not doomed. For the rest of this document, we're referring to browser Javascript when we discuss Javascript cryptography.
Password Policy Guidelines
saved on 2011-08-29 10:20:45
This document introduces the basic concepts of network authentication. In particular, it focuses on the use of login IDs and passwords to verify the identity of users. Various strategies for selecting strong, hard-to-guess passwords are then discussed.
Defining Enterprise Identity Management
saved on 2011-08-29 10:20:08
Identity management is the combination of business process and technology used to manage data on IT systems and applications about users. Managed data includes user objects, identity attributes, security entitlements and authentication factors. This document defines the components of identity management, starting with the underlying business challenges of managing user identities and entitlements across multiple systems and applications. Identity management functions are defined in the context of these challenges.
Password Reset for Locked Out Users
saved on 2011-08-29 10:19:45
Users often forget their initial network login password or inadvertently trigger an intruder lockout. These users should be able to get assistance, reset their network or local password, clear intruder lockouts and get back to work.
Choosing Good Passwords -- A User Guide
saved on 2011-08-29 10:19:17
This document presents a plain-language guide to security threats posed by password cracking software, and how to apply good password rules to prevent security compromises. It also gives suggestions for choosing good passwords and making them secure and hard to guess.
Password Manager - MozillaZine Knowledge Base
saved on 2011-08-29 10:04:27
This article was written for Firefox but may also apply to Mozilla Suite/SeaMonkey and Thunderbird, although menu sequences may differ. Firefox includes a feature that allows you to save passwords. If you enter a password in a web form and you do not see a message asking you if you want Firefox to remember the password, make sure that "Remember passwords for sites" is enabled in "Tools -> Options -> Security / Passwords. You can also choose to use a Master password to protect your passwords, which is highly recommended if you share your computer. See the linked article for details.
Amazonのパスワードを長い間変えていない人は、とりあえず今すぐ変えましょう! : ライフハッカー[日本版]
saved on 2011-08-23 18:14:25
Amazonのパスワードをしばらく変えておらず、そのパスワードが8文字以上の人は気をつけてください。Amazonのセキュリティの欠陥は、パスワードの8文字以降を認識しないというものだそうです。
Popular Tags
- programming
- security
- python
- development
- javascript
- openid
- design
- PHP
- database
- WebDesign
- software
- performance
- framework
- Erlang
- reference
- Haskell
- identity
- password
- privacy
- Usability
- business
- philosophy
- Web
- network
- language
- architecture
- algorithm
- c
- library
- mathematics
- management
- authentication
- functional
- opensource
- tools
- cryptography
- encryption
- AJAX
- algorithms
- Internet
- testing
- css
- math
- blog
- code
- History
- server
- api
- java