Timeline for philosophical: restricting the password space increases security
Current License: CC BY-SA 3.0
7 events
when toggle format | what | by | license | comment | |
---|---|---|---|---|---|
Mar 20, 2016 at 16:28 | vote | accept | pavlak11 | ||
Mar 19, 2016 at 13:53 | comment | added | TTT | (continued) To really hit your point home, in the above case, it's certainly possible that there are 36 different threads of the brute force attack running simultaneously, each one beginning with a different initial character. | |
Mar 19, 2016 at 13:51 | comment | added | TTT | @DavidZ - Great point. The order of brute force attempts shouldn't matter. Though under normal circumstances your password length should be long enough that it's irrelevant. For example, without the length constraint, if you were worried that aaaaaa might be discovered much sooner than 999999, then just add another character and make it 7 chars long: aaaaaaa. | |
Mar 19, 2016 at 10:18 | comment | added | David Z |
It might be worth clarifying that trying 9 ...a , 99 ...aa , etc. is also a possible brute-force attack, otherwise it looks like 999999 is a much more secure password than aaaaaa !
|
|
Mar 18, 2016 at 20:08 | history | edited | TTT | CC BY-SA 3.0 |
clarified which scheme I selected.
|
Mar 18, 2016 at 20:03 | history | edited | TTT | CC BY-SA 3.0 |
clarified which scheme I selected.
|
Mar 18, 2016 at 18:55 | history | answered | TTT | CC BY-SA 3.0 |