Not exact matches
Also, in a situation where an application forces users to use a
weak password by restricting length and / or valid characters (think 4 - digit PIN), adding a 32 - bit salt (4 characters) is only going to give you a total length of 8 characters, well within reach of a nearly instantaneous rainbow table attack for common hashes
like SHA - 1.
Nor would it be productive or popular for law societies to proactively embark on an aggressive campaign to discipline lawyers for poor technological practices,
like, for example, using
weak passwords.
If you're sticking with the randomly generated
passwords (wherein the end user,
like your mom, will need to give you the
password each time), we would encourage you to change from the
weaker default
password length to «Very secure (10 characters)».
When there's dozens of security options right at your fingertips,
like we just demonstrated, there is no excuse for running TeamViewer with no user account, no two factor authentication, and a
weak password.
«If you are a user of a website, your biggest threat is that you re-use the same
password everywhere, so that when a hacker breaks into a
weak website, they get your
password to strong website (
like Google or Twitter),» said Robert Graham, chief executive officer at Atlanta - based Errata Security.
Don't use the
weaker WEP encryption or set an obvious passphrase
like «
password».