Sign in to follow this  

Security: Long easy password vs. shorter jumble

Recommended Posts

Evolution    16

I was wondering which is considered more secure out of the two? e.g. Hellomynameisjohnsmith vs. G8dB$_g87hgd*

Are most dictionary attacks just single words? Do most brute force attempts only trying letters due to the enormous number of possibilities?

Share this post

Link to post
Share on other sites
Nagisan    248

Probably the longer one as long as its not as easy to guess as your example.

Brute force attacks are most likely to work when they try every combination of upper and lower case letters, and all numbers and symbols. But, at the same time, those take the longest to try.

So if no one knows how long your password is and its 20 characters, even if its only letters, their brute force will generally try everything from 1 to 20 characters of all letters upper AND lower case, as well as numbers and symbols, which will take MUCH longer to get then if it tries the same thing for only 8 characters.

As long as no one knows how long your password is and what it consists of (such as only letters), the longer the password the better protected it is from brute force attacks.

According to

Hellomynameisjohnsmith = 179 Sextillion years

G8dB$_g87hgd* = 7 Billion years

EDIT: But, it shouldn't be easily guessable like the example you gave if someone knows John Smith.

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this  

  • Recently Browsing   0 members

    No registered users viewing this page.