Okay, so I’ve not been good at keeping up here. I do plan on writing up more stuff soon, though. I’ve been studying for my GIAC GSEC re-cert and have come across a few ideas for things to research and write about after I take the test.
infosec
How long will it take to guess your password?
March 4, 2007 - 9:19pm — Scott BurnsI came across Bruce Schneier’s article on choosing secure passwords some time ago but just reread it again. I find the description of the efforts that AccessData’s PRTK goes through to guess a password fascinating. Once of the things they teach in security classes is that brute force attacks will always work; the only protection is in the amount of time it will take to succeed. Throw a little intelligence into the guessing and that amount of time can get very short!
