Re: Have I been hacked?

To: debian-user@lists.debian.org
Subject: Re: Have I been hacked?
From: Eduardo M KALINOWSKI <eduardo@kalinowski.com.br>
Date: Fri, 09 Jan 2015 16:19:39 +0000
Message-id: <[🔎] 20150109161939.Horde.0ABxBZwnOqT8_zSbYXhDhg2@mail.kalinowski.com.br>
In-reply-to: <[🔎] 54AFF89D.4000701@gmail.com>
References: <[🔎] 20150106180456.GA8657@fever.havannah.local> <[🔎] 7851846.GjTCVcmPuo@merkaba> <[🔎] 09012015001632.a7c9236b8b1d@desktop.copernicus.demon.co.uk> <[🔎] 3714920.DLpo8KHxcl@merkaba> <[🔎] 54AFF89D.4000701@gmail.com>

On Sex, 09 Jan 2015, Jerry Stuckle wrote:

SSH passwords are very safe, if they are long enough.  For instance, if
you have a 10 character password, mixed case and numbers (no special
characters), a brute force attack of 100 attempts per second would take
almost 266 million years to cover all possibilities.  11 characters
would take over 16 billion years - longer than the life of the universe.


If the characters are random, that is.

The problem is that passwords are often not really random. So evenseemingly secure passwords may be guessed relatively easy. Thisarticle gives a good overwiew about this topic:

http://arstechnica.com/security/2013/05/how-crackers-make-minced-meat-out-of-your-passwords/


--
Eduardo M KALINOWSKI
eduardo@kalinowski.com.br

Reply to:

Follow-Ups:
- Re: Have I been hacked?
  - From: Jerry Stuckle <stucklejerry@gmail.com>
- Re: Have I been hacked?
  - From: Brian <ad44@cityscape.co.uk>

References:
- Have I been hacked?
  - From: Danny <mynixmail@gmail.com>
- Re: Have I been hacked?
  - From: Martin Steigerwald <Martin@lichtvoll.de>
- Re: Have I been hacked?
  - From: Brian <ad44@cityscape.co.uk>
- Re: Have I been hacked?
  - From: Martin Steigerwald <Martin@lichtvoll.de>
- Re: Have I been hacked?
  - From: Jerry Stuckle <stucklejerry@gmail.com>

Prev by Date: Re: Have I been hacked?
Next by Date: help in purging old packages
Previous by thread: Re: Have I been hacked?
Next by thread: Re: Have I been hacked?
Index(es):
- Date
- Thread