Skip to main content

Home/ MOBIUS Libraries/ Group items tagged passwords

Rss Feed Group items tagged

Filter: All | Bookmarks | Topics Simple Middle
anonymous

Passfault Demo: Password Evaluation - 0 views

passfault.appspot.com/password_strength.html

security password

shared by anonymous on 25 May 12 - No Cached
  • anonymous on 25 May 12
     
    What's really cool about this thing is the level of analysis that it does of the password. Most "password strength meters" are just looking at length and inclusion of things like lowercase/uppercase special characters. This thing does so much more and rather than just saying "weak", "very strong" it tells you how long it'd take to crack it. Even cooler is that you can choose 'Show Options' and change the hardware of the imaginary attacker and the type of encryption your password is stored as. This is via: http://nakedsecurity.sophos.com/2012/05/25/how-long-would-it-take-to-crack-your-password/ Worth reading as it also calls into question the idea of regularly changing your passwords. Obviously it's much better to just use separate passwords for everything and only change them if you have a reason to think your password was compromised.
Justin Hopkins

Yahoo's password leak: What you need to know (FAQ) | Security & Privacy - CNET News - 1 views

news.cnet.com/...leak-what-you-need-to-know-faq

security privacy passwords

shared by Justin Hopkins on 16 Jul 12 - No Cached
  • All of which suggests that close to 300,000 people could have just seen their personal, non-Yahoo e-mail accounts compromised as well as their Yahoo accounts.
  • To be on the safe side, if you have a Yahoo ID, you should assume it's no longer secure and change its password. (I just did, and I've never visited Yahoo's contributor-network site until today.) Yahoo is also changing the passwords of affected users. You should, however, also change other passwords if: You've used the same password for any other major service -- particularly for sensitive accounts such as banking, investing, or e-mail. You've ever signed into Yahoo or Associated Content with a non-Yahoo e-mail address.
  • Justin Hopkins on 16 Jul 12
     
    Also mentioned in this article is the leak from a few months back of LinkedIn. If you have a LinkedIn account the same advice applies. Hopefully you were using a unique password for all of these services and have nothing to fear ;)
anonymous

Generate and keep really secure passwords for free | ITworld - 0 views

www.itworld.com/...p-really-secure-passwords-free

security passwords software

shared by anonymous on 15 Jun 12 - No Cached
  • Of course, they could look for a username that sounds like you in the list of 8 million LinkedIn and EHarmony logins and then just use the password published there, or the ones posted following the hack of 77 million user accounts at Sony or the 130 million credit-card accounts taken from the clearinghouse that processes your credit card payments, or tens of thousands lost by a New York electric utility or the California government services agency you thought was unquestionably trustworthy or the 24 million emails and user names swiped from Zappos or almost anywhere else.
  • you should use a different highly secure password at every site you use.
  • That way, no matter what web-site login database is breached next, your loss can be limited to only the information (or money) on that one site,
  • ...2 more annotations...
  • KeePass -- one of two apps with unquestioned leads; both come with Firefox and Internet Explorer extensions or web sites you can used independently; LastPass – the other of the two leaders. Both are stable, quick, reliable and free;
    • anonymous
      anonymous on 15 Jun 12
       
      I've used LastPass. It's nice, but I prefer to have something local if possible. I'm not really concerned with their security, but it's nice to have your passwords offline.
  • KeePass;
    • anonymous
      anonymous on 15 Jun 12
       
      This one doesn't have a browser integration but it can be kept on a usb key for portability
Justin Hopkins

Google Exec, Others Advise Tight Web Security After Writer Hack - 0 views

slashdot.org/...web-security-after-writer-hack

security google

shared by Justin Hopkins on 14 Aug 12 - No Cached
  • Justin Hopkins on 14 Aug 12
     
    If you don't already know what 2 factor authentication is - it's the use of a second out of band communication channel that is used in addition to your password. In the case of Google it means that when you go to log in they will send you a text message with a 6 digit numerical code that you'll type in as well. This means that would be hackers would need to not only know your password but also have physical access to your phone.  I've already enabled this feature for Google apps @mobiusconsortium.org - if you'd like to enable it for your account (it takes like 10 minutes to get set up and fix your applications) just let me know. 
1 - 4 of 4
Showing 20 items per page