Password cracking is when somebody tries to figure out someone else's computer password to get past a security system. It is usually used to intrude into someone's computer or steal someone's data or identity.
There are several ways to figure out a user's password. One common method of password cracking is a dictionary attack. In this attack, the attacker runs through a dictionary of common passwords until he finds the right one. This attack only works if the user has not selected a strong password (see below). Another method is the brute force approach. In this attack, the attacker tries all possible combinations of letters, numbers and special characters.
Sometimes attackers take advantage of the poor security practices of users. If a user keeps a record on their computer of all their usernames and passwords, anybody who gets access to that record could easily get access to all of their accounts and Web sites.
Attackers can also use social engineering to easily discover passwords. For example, an attacker who knows some information about a user can pretend to be a systems or network administrator and trick the user into giving him their password.
Protective Measures
Practices
-
Choose strong passwords: Passwords that are dictionary words, have fewer than seven characters, or are easy to guess are vulnerable to password cracking. A strong password is at least eight characters long and has a combination of upper/lower case letters, numbers, and special characters (e.g., #, !, *). The longer your password, the longer it will take a brute force tool to guess it.
-
Don't reveal your password to anyone: You should never share your password with anyone, even a system administrator. No legitimate administrator ever asks a user for his or her password.
-
See more protective measures under the entry for password.
References
- The Simplest Security: A Guide To Better Password Practices
(SecurityFocus) - Password Cracking (Wikipedia)
Print view
Email to a friend
Submit to Reddit
Save to del.icio.us
Submit to Digg.com
Stumble It!