Yeah! another one:
"Keeping the unnecessary protocoles enabled and the unused ports open, increases the probability of a full system exposure"
Printable View
Yeah! another one:
"Keeping the unnecessary protocoles enabled and the unused ports open, increases the probability of a full system exposure"
1: In the office (or any network computing environment) its good practice to lock your terminal if you step away for any reason. It may seem like a slight inconvenience but it makes a big difference in the overall security of the local network.
2: An easy way to get users to use mixed characters in their passwords to make them more secure is to show them simple "leet speak"**.Users can create passwords that are easy to remember for them but created in such a way that the password itself is a bit more secure. For example "password" could be "P@55w0rD"
**I know all of you are probably rolling your eyes and groaning as you read that but I suggest you try it out, you'd be surprised.
Most password crackers actually find that. They try common passwords spelled with other spellings such as that.Quote:
Originally posted here by CuseMMA
2: An easy way to get users to use mixed characters in their passwords to make them more secure is to show them simple "leet speak"**.Users can create passwords that are easy to remember for them but created in such a way that the password itself is a bit more secure. For example "password" could be "P@55w0rD"
**I know all of you are probably rolling your eyes and groaning as you read that but I suggest you try it out, you'd be surprised.
One more to add (thanx to gore)
"Artificial intelligence is no match for natural stupidity " :p
here's mine too.
"Encrypting the encrypted doesnot make a sense."
Ah, then I stand corrected. Thank you for enlightening me on that issue.Quote:
Originally posted here by gore
Most password crackers actually find that. They try common passwords spelled with other spellings such as that.
Here's another one (no fun):
Security is all about the People, Process and Technology. First, we need to educate people about the importance of security. Then, we develop our processes and policies. Finally, we use technology to enforce them.
.
You can't just go and buy some tools, and expect everything would be secure. Security is a continuous improvement to the PPT.
Peace always,
<jdenny>
How to create a massive word dictionary for use in password cracking? Go to Access Data's website at www.accessdata.com download all the text dictionaries/libraries. You next need to merge them as one. There are several tools to do this type of task; however if you are an EnCase user, preview your own drive, select all your new libraries, and export them out as a merged .txt file. You'll end up with something like a 200MB massive dictionary. This can be used with many tools to defeat passwords with a dictionary attack.
And lets not forget about keeping the AV updated :p
YEh: after 3 on the trot requests for personal assistance.. I'm on ****ing holidays.. and when I'm not I dont have the time for bloody personalised assistance.. two versions Im sure the wording can be cleaned on the version 1..
Ver 1: If you have a problem Start a thread in the Appropriate Forum.. Don't request Personal support sessions from other members, except by invitation. Two reasons, one.. it is not helpful to the rest of the board and Two, Other members like to help But May not have the personal time to assist every request
ver2: You want help start Your own thread .. DONT PM memebers for personalsed Tech support