Re: breaking 2k passwords
From: Jeff Cochran (jcochran)
Date: 10/11/02
- Next message: Torgeir Bakken (MVP): "Re: Security Bulletin MS02-058 bug?"
- Previous message: jack king: "outlook express5"
- In reply to: ostoki: "breaking 2k passwords"
- Next in thread: Joe Richards [MVP]: "Re: breaking 2k passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: jcochran at naplesgov dot com (Jeff Cochran) Date: Fri, 11 Oct 2002 18:44:18 GMT
>my domain users use a password schem of ssxxxx (last 4 are
>always numbers). How long would it take someone (internal
>or external) to crack these passwords? 10min, 1 day, 1
>month?
Now knowing what I know about your system, there are 10,000 possible
combinations on your passwords (all 0's to all 9's). Brute force at
100 a minute it would be less than two hours. Calling Jan the
receptionist, telling her that I'm Dave at the help desk and I need
her login and password to check a potential problem in her payroll
would get me in about 118 minutes quicker... :)
Jeff
- Next message: Torgeir Bakken (MVP): "Re: Security Bulletin MS02-058 bug?"
- Previous message: jack king: "outlook express5"
- In reply to: ostoki: "breaking 2k passwords"
- Next in thread: Joe Richards [MVP]: "Re: breaking 2k passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
