A question about those online bookmark apps and some of the others too.
Privacy and security??????????
The user is putting their stuff on a site where it can be reviewed, analyzed
and used for who know what purpose. Why would someone do that?
I put them there or users who have lost there passwords, and also to
bring to light the current level of easily accessible cracking
solutions and what you should do and advise others to do to protect
themselves.
I think it comes down to intentions and also execution. You could
argue that the evil minded are just as interested in keeping this
information hidden. By bringing things to light everybody who needs to
know can take proper precautions, but your right that one must choose
the proper forum and time to do so. Maybe I'm guilty of choosing the
wrong time and place and merely humoring myself that I have the right
intentions.
Nevertheless, I warn you that a standard home users Windows password
from 1-14 characters of just numbers and or letters without both
special character in both the first and second half of the password can
be broken by either someone with physical access to a PC, or even
access to the same network to the machine and all within a few minutes.
A business network will also have vulnerable machines if there are Win
9X machines on the network, LM hashes have not been disabled and 15 or
more character passwords have not been required.
This is not what you might hear as the standard Windows security wisdom
mentioned today, but I can assure you there are many hackers who know
this who might want to keep the sheep from knowing this or laugh that
they are naive to be led to believe 8 characters are enough, especially
if they have only 1 special character intermixed with numbers and
letters. I also want to point out that I do not really know a lot
about this whole subject and am still learning, but was shocked to see
my Windows LM hash of a password of 11 characters and number, cracked
in 20 seconds.
Now again as to my intentions and my execution of divulging this
knowledge, I'm open to discussion and suggestions. Also as to staying
on topic for this group, Webware is a kind of freeware and again these
Webware tools should be used to see if yours or your friends,
acquaintances, and coworkers passwords are strong enough or as a
resource for recovering them if they had not made them strong enough
before and had lost them. In the end though both intentions and wise
accomplishment of these intentions are the most critical and perhaps I
am failing in this by posting this information in this group and the
Webware group.
