Jump to content

Public Memlog 1

  • entries
    60
  • comments
    256
  • views
    26,650

This May Have Been The Biggest Mistake I Have Made In My Life.


Tracker

777 views

 Share

The mistake is making so many accounts on so many forums BEFORE setting up some way to actually to detect if someone has broken the password. The reason this is a problem is my educational account has "weak" links to at least three other accounts, which in turn have "strong" links to this and other places, not to mention each other. The context of weak and strong is how closely related key aspects are between any two account. One account I have I am very worried about because it can lead directly to a breach in my college count. That in turn, could lead to expulsion or worse. The worse can actually happen if any account were to be hijacked and can only need one post. I have only one, maybe two passwords that currently lack the vulnerability that my current ones have, but those will become worse than the ones than I have. Random alphanumeric passwords will not work because there are few ways to remember them. I will have to use some in public places. So as it stands right now, I can not make a single new account until I have a way to prevent this from happening or successfully counter a breached post (if I am being tried as a felon, IP is not likely going to be enough). What happened to some of you with Youtube was mild compared to what could happen.

 Share

12 Comments


Recommended Comments

...who the hell hacks college accounts? Are you serious?

Just forget it and move on, man. You make things too complicated.

Link to comment

Have you never heard of changing your password?

Yes, yes I have, but I have no clue what to change it to because all of the ones I can come up with are easily inferred from posts here and elsewhere.

Link to comment

Have you never heard of changing your password?
Yes, yes I have, but I have no clue what to change it to because all of the ones I can come up with are easily inferred from posts here and elsewhere.

Use a password made of giberish of over 10 characters, use a symbol and an uppercase character. Those are the hardest to crack with dictionary attacks and can take many years to brute force crack the password. Save the password to a file on your PC or another location like an external drive. Make sure the file's name is unrelated to what it contains(e.g 'My dogs operation.txt'), don't use keywords like 'password' in the file and even encrypt it with a master key if you are that worried. If you have registered on as many sites as I have over the years, it's impossible to retain all the passwords in memory.

If you are concerned about how strong your passwords are, make new ones every few months. http://howsecureismypassword.net will even give you an estimates on password strength.

Link to comment

Have you never heard of changing your password?
Yes, yes I have, but I have no clue what to change it to because all of the ones I can come up with are easily inferred from posts here and elsewhere.
Use a password made of giberish of over 10 characters, use a symbol and an uppercase character. Those are the hardest to crack with dictionary attacks and can take many years to brute force crack the password. Save the password to a file on your PC or another location like an external drive. Make sure the file's name is unrelated to what it contains(e.g 'My dogs operation.txt'), don't use keywords like 'password' in the file and even encrypt it with a master key if you are that worried. If you have registered on as many sites as I have over the years, it's impossible to retain all the passwords in memory.If you are concerned about how strong your passwords are, make new ones every few months. http://howsecureismypassword.net will even give you an estimates on password strength.

You are a glorious winged derp.

https://xkcd.com/936/

Link to comment

You are a glorious winged derp.https://xkcd.com/936/

Did you only come here to criticize my suggestion trying to help? When I speak of gibberish passwords, I don't mean substitions like the XDCD's comic used. Lets make a proper comparison out of that silly comic... A gibberish password of 44 bits using random letters, symbols, spacings and casings is harder to crack than a password of 44 bits using common letters.

In the time it took your to look up that comic you could have written a decent suggestion.

Link to comment

You are a glorious winged derp.https://xkcd.com/936/
Did you only come here to criticize my suggestion trying to help? When I speak of gibberish passwords, I don't mean substitions like the XDCD's comic used. Lets make a proper comparison out of that silly comic... A gibberish password of 44 bits using random letters, symbols, spacings and casings is harder to crack than a password of 44 bits using common letters.In the time it took your to look up that comic you could have written a decent suggestion.

Control T, "g xkcd password", enter, right click, copy link location, click tab, control v, submit. All and all, about fifteen seconds.

Lets say you have a password such as "j&vFSbh67e3BjA64B*3N". Nice and confusing. It's hideous and unless you use that same password for weeks and weeks, there's no way you're going to remember that. Gaben valve clockwork orange, on the other hand, is extremely easy to remember. So if you want to log on to, say, RRU, and you have a password like S#h67e3BjA64q*3N, either you reset your password, or you don't log on. But if you have "Gaben valve clockwork orange", then you're good. Next, no brute force cracking algorithm doesn't use symbols, so it spends time testing for characters that aren't in the password. BLAH BLAH I CAN'T READ.

I shant bother trying to explain things to you anyways. I almost agree with Lair at this point. It's his fault for using am evidently weak password. Use a password that's complex enough but easy to remember. Maybe even use an easy to remember sentence, like "Why is RRU so full of herping derp"".

Link to comment

I was also going to suggest "correct horse battery staple" but I saw that Cyrem mentioned dictionary attacks. If a hacker/cracker/whatever correctly guesses that you have a password with many normal words, then an attack that iterates through entire words (or at least only alphabet letters) instead of single letters at a time will be much more effective. Having non-alphanumeric characters ensures that attacks must check through most or all of the special characters on a standard keyboard.

Link to comment

Or, you could be like me and type a password that makes no sense at all to you and has no link to any of your memory whatsoever and is completely random, then use a crypt. I usually take time to memorize my passwords, but you could also write it down. Or you can be just blatantly too complicated and get a list of random numbers, use matrix code to encrypt them, then use the corresponding ASCII symbols as your password.

Heh, I'm betting nobody will take the time to even consider this though.

Link to comment

I struggle with some of my passwords already. It took me half a dozen attempts to determine one my educational account passwords. And I can not write that set of passwords down because I will be using them in a public place. Now I can try to use Minecraft's alphanumeric seed converter and then store it as a set of coordinates to buy time if I find some one breaking in.

Link to comment

You could try being a little less paranoid. The majority of people aren't going to care about your account enough.

Link to comment

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.