Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Whitespace in passwords

From: "dave kleiman" <dave () isecureu com>
Date: Sun, 18 Sep 2005 15:49:24 -0400
Craig,

But less than 50% with special characters and 0% with the extended ASCII.

As with almost all the "crackers" a 1 character extended ASCII is still safe.

Dave




-----Original Message-----
From: Craig Wright [mailto:cwright () bdosyd com au]
Sent: Sunday, September 18, 2005 05:12
To: compuwar () gmail com; Peter Parker
Cc: Anders Thulin; bryan allott; pen-test () securityfocus com
Subject: RE: Whitespace in passwords

Hi

If you think than spaces make you safe...

Get a clue
http://www.rainbowcrack.com/rainbowtables.php?PHPSESSID=cb4c9a
8bf9b885e07c3d0b02242a9a9c

NTLM has a 80.19% crack rate and this is growing

Wait a few weeks and this will increase.

Craig

      >
      > Since _most_ of the precomputed tables available for
rainbow crack are
      > generally not one generated with whitespaces so I
started using it
      > regularly in my passwords :D






------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: