The Elder Scrolls Online

Maintenance for the week of September 1:
• [COMPLETE] Xbox: NA and EU megaservers for patch maintenance – September 3, 4:00AM EDT (8:00 UTC) - 12:00PM EDT (16:00 UTC)
• [COMPLETE] PlayStation®: NA and EU megaservers for patch maintenance – September 3, 4:00AM EDT (8:00 UTC) - 12:00PM EDT (16:00 UTC)

PSA: STRENGTHEN YOUR PASSWORD

Leave a Reply
  • k5iftynineb14_ESO
    k5iftynineb14_ESO
    Crafty Chinamen.
  • Lox
    Lox
    ✭✭✭
    Laerian wrote: »
    Yeah he maybe can brute force the TESO site, the question is how the hacker skipped the unknown IP code protection.

    For this, a hacker needs to take the control of the email tied to the account.

    This is fishy, very fishy.

    Depends if the system is working correctly or not. I have that very IP authentication check twice. The first time I didn't verify it (was when the emails were taking ages). I waited 10-15 mins at the launcher, no email, closed the launcher and retried and it just let me straight in, without any authentication.
  • AlexDougherty
    AlexDougherty
    ✭✭✭✭✭
    ✭✭
    Saerydoth wrote: »
    Also, brute force attacks don't happen in the real world, only in Hollywood.
    Um, SWTOR had a brute force hack not so long ago, as well as a number of other attempts using password guessers. These are rarer than key logging and social media one, but they still happen.
    People believe what they either want to be true or what they are afraid is true!
    Wizard's first rule
    Passion rules reason
    Wizard's third rule
    Mind what people Do, not what they say, for actions betray a lie.
    Wizard's fifth rule
    Willfully turning aside from the truth is treason to one's self
    Wizard's tenth rule
  • AlexDougherty
    AlexDougherty
    ✭✭✭✭✭
    ✭✭
    aRealClassAct wrote: »
    AlexDougherty wrote: »
    Mind you short of memorising a random selection of symbols no password will ever be flawless. And I'm not going to memorise a ten plus character random string of characters.

    7h0ugh i7 i5 b3c0m1ng m0r3 p0pul4r, c0nv3r71ng y0ur curren7 pa55w0rd 2 s0m3 f0rm of 1337 5p33k i5 n07 a b4d w4y 2 1mpr0v3 s3cur17y 4nd st177 r3m3mb3r y0ur p455w0rd!

    I'm sorry, it hurts my eyes too!
    Actually that would register as weak, which is why you have to add symbols, even grammar helps make it harder. My original password was like your sentence, which is why I upped it's hardness, but the unbreakable ones are completely random. Which is what I was commenting on.
    People believe what they either want to be true or what they are afraid is true!
    Wizard's first rule
    Passion rules reason
    Wizard's third rule
    Mind what people Do, not what they say, for actions betray a lie.
    Wizard's fifth rule
    Willfully turning aside from the truth is treason to one's self
    Wizard's tenth rule
  • Squishy
    Squishy
    ✭✭✭
    "AlexDougherty wrote: »
    Actually that would register as weak, which is why you have to add symbols, even grammar helps make it harder. My original password was like your sentence, which is why I upped it's hardness, but the unbreakable ones are completely random. Which is what I was commenting on.

    Actually people, the only reason for symbols/numbers, is for human to have a hard time guessing it. For a machine/brute force though, assuming it goes alphabetically, the strongest possible password will be something like ZZZZZZZZZZZZZZ - the more Z, the longer the brute force (not sure what is the last character, I'm assuming it'll depend on the software used?)

    Adding symbols/numbers, for a computer brute force, does not change much in all fairness, it might add a couple of hours, maybe days if you have an extremely long password. Against a brute force attack, only the length of password matters. Using 8 character Is usually more than enough, as we are already talking month of brute forcing your way in.

    for info, the list of most commonly used passwords:

    Rank Password
    1 123456
    2 password
    3 12345678
    4 qwerty
    5 abc123
    6 123456789
    7 111111
    8 1234567
    9 iloveyou
    10 adobe123
    11 123123
    12 admin
    13 1234567890
    14 letmein
    15 photoshop
    16 1234
    17 monkey
    18 shadow
    19 sunshine
    20 12345
    21 password1
    22 princess
    23 azerty
    24 trustno1
    25 000000

    I guess "god" eventually faded with the implementation of minimum size requirements :)
    "In 2014, a possible bot was sent to coldharbour by a military GM for a crime she didn't commit. This argonian promptly escaped from a maximum security stockade to the Ebonheart underground. Today, still wanted by the developers she survive as soldiers of fortune. If you have a bot problem, if no one else can bite you, and if you can find her....maybe you can hire The SQUISHY."
Sign In or Register to comment.