-
November 6th, 2002, 04:02 PM
#1
Junior Member
Icq password security
I am thinking about getting ICQ but am a bit worried about password strenth I think the maximium password lenth ICQ allows is 6 or 8 digits long.Now it doesent matter what password I select,My password will not be secure and will be suspect to brute force attacks,correct ?
~RedAlert
-
November 6th, 2002, 04:13 PM
#2
Some one please correct me if i'm wrong?
Lets say the password is 8 Characters long...
Num_V_Chars = Number of valid characters allowed (including Upper/Lower Cases)
So in theory there should be this many combinations...
Num_V_Chars^8?
if Num_V_Chars = 250 then combinations = (250^8)
250^8 = 1.525879E+19
yeah, I\'m gonna need that by friday...
-
November 6th, 2002, 04:17 PM
#3
Junior Member
Sorry I dont understand that,But what your saying is it is pretty insecure... ?
-
November 6th, 2002, 04:34 PM
#4
1.525879E+19 is a very big number!!!
it is unlikely that one would actually spend the time to crack your icq password.
i'd recomend using a random password (ie- "KJn87UGs")
This will at least protect you from someone who is using a Dictionary Brute Force Attack <(this is where they try every word in the dictionary file.)>
yeah, I\'m gonna need that by friday...
-
November 6th, 2002, 06:47 PM
#5
Junior Member
yes as you dont have to log onto icq every time you can set it as some random password and just keep it in a safe place.
and 1.5E+19 is 1500000000000000000 to 1 isnt it? (very big lol)
-
November 6th, 2002, 09:54 PM
#6
Okay, one other tip... Use your real e-mail when signing up for ICQ. If you use a bogus email like eatmyshorts@hotmail.com, Maybe I'll just go register eatmyshorts at hotmail and go thru the password recovery for your password. So use your real email.
-
November 7th, 2002, 02:35 AM
#7
Junior Member
The security problem with icq is that it uses a known port (read doorway to your computer) if anyone is going to hack you they will know that port and monitor it. Though don't panic as given the amount of users the numerical possibility isn't high. I'm not a maths wizard so I can't give you the odds. Install a firewall, though I'm no expert on firewalls I'm sure others here will be better placed to advise you on that score.
do unto others before they do unto you
-
November 7th, 2002, 10:18 AM
#8
Junior Member
Just some additional info.
Your icq-password is stored in your local .dat file in your icq directory. This can be fetched out into clear text with tools located on this site. So if you worry about someone getting your password - hang tight to your dat-file.
-
November 7th, 2002, 10:33 PM
#9
xmaddness > I have personally experimented another saspect of your suggestion. I lost one of my ICQ accounts because someone brute forced it and , as I gave a false e-mail address, I wasn't able to make the site to send me the new password in order to change it (and to cut the ground under the cracker's feet).
But I suggest you to not use your principal e-mail adress, the best solution is to create an e-mail adress which will redirect your mails towards your principal adress.
Life is boring. Play NetHack... --more--
-
November 8th, 2002, 07:43 AM
#10
ICQ passwords
Originally posted here by xmaddness
Okay, one other tip... Use your real e-mail when signing up for ICQ. If you use a bogus email like eatmyshorts@hotmail.com, Maybe I'll just go register eatmyshorts at hotmail and go thru the password recovery for your password. So use your real email.
That's a good tip xmaddness. You know, I never really thought of it that way. However, I just so happen to use real addresses when registering for things. I have several different internet email accounts specifically for that purpose. It works great.
Opinions are like holes - everybody\'s got\'em.
Smile
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|