What is Digg?Sponsored by Sony Pictures
Do you believe the 2012 Mayan Prophecy? view!
whowillsurvive2012.com - The Mayan Calendar predicts the end of time: 2012. See the trailer for 2012, opening November 13.
333 Comments
- ZephyrNinety, on 10/10/2007, -13/+382"Please enter a password to use for your account."
"penis"
"That password is too short." - pimpsallad, on 10/10/2007, -9/+291How fast can it crack 09-f9-11-02-9d-74-e3-5b-d8-41-56-c5-63-56-88-c0?
- Hixz, on 10/15/2007, -3/+266Personally, thats the first thing i guess when trying passwords.
- Wrog, on 10/10/2007, -10/+217*****. Now I have to change my digg password.
Speaking of the devil, did you know if you type your password in the comments it turns into stars?
************* - fezzen, on 10/15/2007, -6/+198mmmm... salted hash....
- xerus, on 10/10/2007, -1/+132penis667
- SilverSnayke, on 10/10/2007, -0/+119You can Hunter2 my Hunter2ing Hunter2.
- inactive, on 10/10/2007, -0/+88password
[edit] You LIE! - inactive, on 10/10/2007, -1/+89Sure, Fgpyyih804423 in 160 seconds maybe, but the real question is how fast it can crack hunter2.
- j10s, on 10/10/2007, -1/+78Im hoping you didn't memorize that
- jpfree, on 10/10/2007, -1/+70And then you can wait for 30 seconds while Firefox freezes because digg stupidly uses javascript to expand all the comments rather than simply redirecting to http://digg.com/security/Fgpyyih804423_in_160_seconds_How_Safe_is_Your_Windows_Password/all
- manitoba98xp, on 10/10/2007, -1/+60Sadly, it only covers passwords which equal "Fgpyyih804423".
- Protoss, on 10/10/2007, -3/+57Nice...but you can set all the threads to auto expand in your profile.
- jeffeb3, on 10/10/2007, -1/+53************
How do you tell if it worked? My password is just a bunch of '*'s anyway. - inactive, on 10/10/2007, -1/+51Ok, I'll bite.
******** - tech42er, on 10/10/2007, -1/+51Yup. I hate that. The only time FF ever freezes is when I'm on Digg. Nested comments were not worth this.
- shifty2, on 10/10/2007, -7/+57I would be more impressed by the inclusions of special non-alphanumeric characters: !@#$%^&*(), etc.
FTA, it shows that even adding a ! to the password made a world of a difference. Of course if you were to include the WHOLE table ~64GB, you'd need a ***** load more time and a multi-threaded version of Ophcrack, a few multi-core CPU's and like 8 Raptor hard drives in RAID 0.
goes to show how weak passwords like that can be decrypted in no time. - Acglaphotis, on 10/10/2007, -2/+51I actually tried to login as you.
- Salgat, on 10/10/2007, -1/+46People digging you down have yet to read the Article I suppose!
- blofeld9999, on 10/10/2007, -0/+45Worked well with his Mom too.
- LucasVB, on 10/10/2007, -0/+43I've got the same combination on my luggage!
- SteveMax, on 10/10/2007, -1/+41Well, MY new password cracker can crack Fgpyyih804423 in less than one second ;)
- Fox318, on 10/10/2007, -0/+38Ironically that password worked well with your account.
- ikrit2006, on 10/10/2007, -4/+36That's the password for my luggage!
- kevinmoore, on 06/13/2009, -2/+34Read the article and you'll find out!
- Terc, on 10/10/2007, -2/+33Terc, you're an idiot. I can't believe you typed your password in. Not to mention the fact that it was "123abc"
I fixed it for you, but I'm handing it out again.
Terc's new password: dfhkld54jd6s1
Have fun digg. - Terc, on 10/10/2007, -1/+31123abc
- affanjam, on 10/10/2007, -2/+31Thats precisely what I have done.
- cbuddha42, on 10/10/2007, -6/+35WTF are you smoking? Did you even read? You use a rainbow table to reverse the hash. It works like this:
Step 1) Get hashed password file from windows machine (it contains the hashed version of your password which looks like this 2jhtoij4jtoi4ja
Step 2) Look up that hash in the table. It tells the hacker that given that hash your password must be "imstupid"
Step 3) Type in your user name and the password "imstupid"
It takes exactly 1 try to get your password right. Your a ***** dumbass for thinking that a failed attempts lockout is going to help. WTF is the admin going to do, not let you have even 1 guess at the password? No one would ever be able to log in. You obviously completely missed the purpose of the table so here it is: your machine stores the hash because it's not easily mathematically reversable, but it easy easy to calculate, so the hacker precalculates all the possible combinations and stores them in a table with the hash they produce and then indexes it based on the hash. Given your hash he can look up your password in the table and he will find it as long as you don't use any characters outside his character set or a password with more characters than he worked out the table for. It basically does the brute force part of a brute force crack ahead of time so it doesn't take as long and doesn't require a bunch of attempts (which not only avoids your lockout but 1000 password attempts a second for a couple hours looks really ***** suspicious).
P.S. This is really old news. This project (rainbow crack) was active and working on these tables years ago. No idea why this is on digg now. - BadassCheese, on 10/10/2007, -0/+29This is MY ACCOUNT NOW =D
- BadassCheese, on 10/10/2007, -1/+30YOU SHOULD NEVER POST YOUR PASSWORD DIGG, :) go check your/my info!
- WaterDragon, on 10/10/2007, -5/+33yeah...but it's WIDE!
- bromac, on 10/10/2007, -1/+27Password length contest?
- Terc, on 10/10/2007, -3/+28I read it just fine... thanks for wasting my time. I wish it would have been hidden.
- rendereduseless, on 10/10/2007, -2/+26***** you
damn it - Tourney3p0, on 10/10/2007, -0/+22Depends on how many chins you have and how thick your glasses are.
- mc7winkie, on 10/10/2007, -1/+23Test
************ - fluidfoundation, on 10/10/2007, -0/+22"12345? that sounds like the combination to some idiot luggage."
- manitoba98xp, on 10/10/2007, -1/+220phcrack cracks the NTLM/LANMAN hashes, not doing login attempts. In a corporate environment, that doesn't work as the hashes are stored only on the domain server (with some exceptions).
- ducs, on 10/10/2007, -0/+20NTFS, not NTSC.
Unless you use video tapes to store your files. - JasonCox, on 10/10/2007, -8/+26"How Safe is Your Windows Password?"
About as safe as a password on any other OS. - CatsAreGods, on 10/10/2007, -1/+19Oh my God! It's full of stars!
- btipling, on 10/10/2007, -28/+45This is a nested comment that nobody will probably ever read because the Digg comment system is terrible.
- univers3man, on 10/10/2007, -0/+17I personally prefer KeePass. (www.keepass.org) It's also a database for storing passwords, which is useful when you have a bajillion passwords. Plus, it's cross platform.
- s1mph0ny, on 10/10/2007, -1/+168******************************************************************************************************************************
- OutThisLife, on 10/10/2007, -3/+18test
****************** - grumpyrain, on 10/10/2007, -2/+17@jpfree - I actually had to open Opera to digg your comment.
- Dantetheinferno, on 10/10/2007, -0/+14http://bash.org/?244321
- samadam, on 10/10/2007, -0/+14you know that after that windows just truncates the password to 14 characters, right?
- BadassCheese, on 10/10/2007, -2/+16evolution
-
Show 51 - 100 of 336 discussions
The Digg Toolbar for Firefox lets you Digg, submit content, and keep track of Digg even when you're not on the Digg site. Download the official 
© Digg Inc. 2009
— Content created and posted by Digg users is