Jump to content

How Safe is Your Password?


Recommended Posts

Password Strength Checker

http://www.passwordmeter.com/

A great and useful tool, especially for determining new passwords strength

I suggest bookmark you it

From the site:

This application is designed to assess the strength of password strings.

The instantaneous visual feedback provides the user a means to improve the strength of their passwords, with a hard focus on breaking the typical bad habits of faulty password formulation.

Since no official weighting system exists, we created our own formulas to assess the overall strength of a given password. Please note, that this application does not utilize the typical "days-to-crack" approach for strength determination.

We have found that particular system to be severely lacking and unreliable for real-world scenarios.

This application is neither perfect nor foolproof, and should only be utilized as a loose guide in determining methods for improving the password creation process.

Link to comment
Share on other sites


[ Moved. ]

I'm somewhat doubting the capabilities of this tool. My 16 character password is showing up as weak...??

Really? That's odd. PM me your password and we can check on that, gamehead. :)

Disclaimer: The contents of this message is a joke and no one should dare to take this seriously. Remember, forum staff will never ask you for your passwords under any circumstance.

--------------

I tried this site and apparently I'd be best off changing my password to a123bB7890 as it scores 100%.

Link to comment
Share on other sites

Well, I'm not sure I want to type my password into a form on some website in clear text over the internet registered to domains by proxy - the proprietor obviously wants to remain anonymous, and while I applaud that, I don't like not knowing anything about the proprietor of a web site where you VOLUNTARILY give it a password.

Just my 2 cents...

Registrant:
Domains by Proxy, Inc.

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: PASSWORDMETER.COM

Domain servers in listed order:
NS1.DREAMHOST.COM
NS2.DREAMHOST.COM
NS3.DREAMHOST.COM


For complete domain details go to:
http://who.godaddy.com/whoischeck.aspx?Domain=PASSWORDMETER.COM

Link to comment
Share on other sites

Well, I'm not sure I want to type my password into a form on some website in clear text over the internet registered to domains by proxy - the proprietor obviously wants to remain anonymous, and while I applaud that, I don't like not knowing anything about the proprietor of a web site where you VOLUNTARILY give it a password.

Just my 2 cents...

Registrant:
Domains by Proxy, Inc.

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: PASSWORDMETER.COM

Domain servers in listed order:
NS1.DREAMHOST.COM
NS2.DREAMHOST.COM
NS3.DREAMHOST.COM


For complete domain details go to:
http://who.godaddy.com/whoischeck.aspx?Domain=PASSWORDMETER.COM

Well.. to think this out.. what could the proprietor of the site do with thousands and thousands of random and 'tested only' passwords , how would he know the difference , especially since he couldn't know their application , or what program they were for.??

As i said , it's a tool (imho) can't hurt , might help.

Link to comment
Share on other sites

Well.. to think this out.. what could the proprietor of the site do with thousands and thousands of random and 'tested only' passwords , how would he know the difference , especially since he couldn't know their application , or what program they were for.??

As i said , it's a tool (imho) can't hurt , might help.

I don't know - to train a brute force password program, with known "similarities" amongst all the 'strong' passwords, perhaps? Again, hard to say, but I'm not going to be a part of this social engineering project :).

/tinfoil hat back on/

Link to comment
Share on other sites

  • 2 weeks later...
Well, I'm not sure I want to type my password into a form on some website in clear text over the internet registered to domains by proxy - the proprietor obviously wants to remain anonymous, and while I applaud that, I don't like not knowing anything about the proprietor of a web site where you VOLUNTARILY give it a password.

Just my 2 cents...

Registrant:
Domains by Proxy, Inc.

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: PASSWORDMETER.COM

Domain servers in listed order:
NS1.DREAMHOST.COM
NS2.DREAMHOST.COM
NS3.DREAMHOST.COM


For complete domain details go to:
http://who.godaddy.com/whoischeck.aspx?Domain=PASSWORDMETER.COM

However, your not submitting anything. All your doing it typing in a password. Now if you had to submit it for the site to check than i would be worry. I dont see a problem with it us he has some key logger script that loads onto your computer when using ie 6.

Link to comment
Share on other sites

However, your not submitting anything. All your doing it typing in a password. Now if you had to submit it for the site to check than i would be worry. I dont see a problem with it us he has some key logger script that loads onto your computer when using ie 6.
You're missing the point, and you need to read up on javascript, for one - you don't need anything more than this to get data typed into a page, regardless of submit (especially DHTML, which can react to your input automatically). The point is it's a page being run by a javascript that is set to expire so it won't be cached, and the javascript is parsing and storing your password temporarily as you type, and while it doesn't currently upload anything to the server (that I can tell), it could.

The point is, no one checked before using the site and giving it to others. What's to stop another site like this from simply using a post event in the javascript to post what it stored to the webserver, along with your IP address or some other information? Social engineering at it's best.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...