undefined | Better HN

0 pointsdozzie9y ago0 comments

How do you assess that?

0 comments

3 comments · 1 top-level

pawadu9y ago· 2 in thread

at first this looks like 10 letter + digits, so the number of possible combinations are

    10 ^(26 + 10) = 10^36

But notice that the letters all come from the right half of the keyboard, which is not that uncommon. So the attacker could have tried

    10 ^(26/2 + 10) = 10^23

passwords, which is really not that secure. But then again, the password starts with 01 so this would show up very early in an exhaustive search.

And given these characteristics, chances are the hash was already in someones rainbow tables.

dozzieOP9y ago

> But notice that the letters all come from the right half of the keyboard

Better yet, now notice that the letters come from a set of four! That reduces the search space even more!

Ridiculous argument.

> Ridiculous argument.

I beg to differ:

j / k navigate · click thread line to collapse