29-11-2015, 18:12
|
#136
|
|
cf.mega poster
Join Date: Aug 2004
Posts: 11,207
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by Ignitionnet
|
Dictionary attacks FTW.
|
|
|
|
30-11-2015, 09:03
|
#137
|
|
cf.mega poster
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Just got the SuperHub 3
Dictionary attacks are actually hard. Think about the entropy.
Take a "complex" 8-char password: 26 letters (x2), 10 numbers and some symbols. Let's say each character has 100 possibilities, over 8 characters.
My simple maths gives me about 10,000,000,000,000,000 possible combinations.
Now compare to a 4 "word" passphrase. The Oxford English dictionary contains 171,476 words.
That comes to 864,596,308,417,753,067,776 possible combinations. That's just 4 words.
|
|
|
|
|
30-11-2015, 09:21
|
#138
|
|
cf.mega poster
Join Date: Aug 2004
Posts: 11,207
|
Re: Just got the SuperHub 3
And how many four-word phrases can you fit into 8 characters?
|
|
|
|
|
30-11-2015, 10:05
|
#139
|
|
cf.mega poster
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by qasdfdsaq
And how many four-word phrases can you fit into 8 characters?
|
Eh? I'm not sure I follow what you're getting at. Nobody said your phrase had to be 8 characters long and the point is that you can easily remember a long (character count) password by having it be a short phrase, but it's hard to remember a long, complex password. You cannot compare a randomised password with a randomised passphrase, the passphrase is longer in terms of character count but easier to remember as it's just a couple of words. That's the point, correcthorsebatterystaple is a 26 character password, but good luck remembering a randomised 26 character password. The difference is between short and complex vs Long and simple.
|
|
|
|
|
30-11-2015, 15:38
|
#140
|
|
cf.mega poster
Join Date: Aug 2004
Posts: 11,207
|
Re: Just got the SuperHub 3
You can't fit a four-word phrase into 8 character or 10-character limit commonly used well, everywhere, so any additional entropy is just truncated.
|
|
|
|
|
30-11-2015, 15:47
|
#141
|
|
cf.mega poster
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by qasdfdsaq
You can't fit a four-word phrase into 8 character or 10-character limit commonly used well, everywhere, so any additional entropy is just truncated.
|
Everywhere? Given that we're talking about Wireless passwords, WPA's limit is 63 characters. Arbitrary limits of other services don't detract from the fact that passphrases are more secure, whether you can use them or not is a different matter.
For those services that have a low character limit (Which are less common than you imply), I use a password manager to generate random unique passwords.
|
|
|
|
|
30-11-2015, 15:55
|
#142
|
|
Inactive
Join Date: May 2013
Posts: 382
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by qasdfdsaq
Dictionary attacks FTW.
|
|
|
|
|
|
30-11-2015, 16:23
|
#143
|
|
cf.mega poster
Join Date: Aug 2004
Posts: 11,207
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by MUD_Wizard
|
---------- Post added at 17:23 ---------- Previous post was at 17:22 ----------
Quote:
Originally Posted by Kushan
Everywhere? Given that we're talking about Wireless passwords, WPA's limit is 63 characters. Arbitrary limits of other services don't detract from the fact that passphrases are more secure, whether you can use them or not is a different matter.
For those services that have a low character limit (Which are less common than you imply), I use a password manager to generate random unique passwords.
|
They're common-er than you counter-imply. Like, y'know, at least two of my banks. Good luck logging into mobile banking while switching back and forth six times with a password manager.
|
|
|
|
|
30-11-2015, 16:52
|
#144
|
|
Sad Doig Fan!
Join Date: Aug 2007
Location: Barry South Wales
Age: 69
Services: With VM for BB 250Mb service.(Deal)
Posts: 11,845
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by Kushan
Everywhere? Given that we're talking about Wireless passwords, WPA's limit is 63 characters. Arbitrary limits of other services don't detract from the fact that passphrases are more secure, whether you can use them or not is a different matter.
For those services that have a low character limit (Which are less common than you imply), I use a password manager to generate random unique passwords.
|
|
|
|
|
01-12-2015, 03:43
|
#145
|
|
Inactive
Join Date: Jun 2008
Location: Leeds, West Yorkshire
Age: 47
Posts: 13,995
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by pip08456
Look at it this way, an 8 letter lower case password has 208,827,064,576 different combinations - a huge number but with the right tools won't take long to crack especially now that Amazon has made GPU cloud computing available. Add a capital letter into the mix and the time raises expotentially as it will continue to do with the addition of a number and then a special case - come back in a hunderd years or so for the answer.
|
This is from 3 years ago.
https://stormpath.com/blog/5-myths-password-security/
http://www.esecurityplanet.com/hacke...rds-video.html
|
|
|
|
|
01-12-2015, 07:54
|
#146
|
|
cf.mega poster
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by pip08456
|
By all means, feel free to back up any counter-argument with some kind of source!
Quote:
Originally Posted by qasdfdsaq
|
I'm not debating that they exist and banks are probably the worst offenders (Mine won't handle passwords shorter than 15 characters), but what are we really debating here, which is more secure or which you can use with wireless or which services are holding the world back?
You shouldn't use the same password (or phrase) on multiple services anyway, so the fact that some places don't allow for particularly long passwords is rather moot, anyway, at least in terms of security.
|
|
|
|
|
01-12-2015, 09:51
|
#147
|
|
cf.mega poster
Join Date: Aug 2004
Posts: 11,207
|
Re: Just got the SuperHub 3
If you think banks are bad, despite being one of the most security-critical industries, I love to watch your brain explode when you see the actual worst offenders.
|
|
|
|
|
01-12-2015, 12:29
|
#148
|
|
cf.mega poster
Join Date: Dec 2010
Location: Warrington
Posts: 4,737
|
Re: Just got the SuperHub 3
Quote:
Originally Posted by qasdfdsaq
If you think banks are bad, despite being one of the most security-critical industries, I love to watch your brain explode when you see the actual worst offenders.
|
I meant worst offenders in the context of requiring arbitrary passwords.
|
|
|
|
|
06-12-2015, 12:01
|
#149
|
|
Ice Cold
Join Date: Oct 2006
Location: West Yorkshire
Age: 48
Services: XL TV
M Phone
1000MB BB
Posts: 1,568
|
Re: Just got the SuperHub 3
I can see me eventually gettng my own better router if future firmware updates don't fix a lot of problems. Wifi is great in terms of its ability to reach places the shub1 and my asus rt-n56u couldn't. The crapper for instance i get 3 bars now before hand had to switch to 4g. But the 5ghz is crap i get fantastic download speeds but webpages take ages to load 30+ seconds so ended up going back to 2.4ghz. I can't complain too much but overall its an improvement
|
|
|
|
|
10-01-2016, 21:23
|
#150
|
|
Inactive
Join Date: Jun 2008
Location: Leeds, West Yorkshire
Age: 47
Posts: 13,995
|
Re: Just got the SuperHub 3
Anyone else on this delightful piece of hardware have any comments on how they're finding it thusfar? 
Need to know how desperately I should try and avoid it until the firmware is out of beta.
|
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT. The time now is 21:38.
|
Join CF
You are here: 
