It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Some features of ATS will be disabled while you continue to use an ad-blocker.
The short answer: it depends, but very quickly if your password is weak. - If your password is eight characters long and all lower-case, like “password,” it would take a hacker 3.5 minutes to guess it. - Changing one of those lowercase characters to an uppercase character, like “Password,” means it would take him almost 15 hours. - Replacing any letter with a special character and keeping the uppercase character, like “P@ssword,” means it would take the hacker 70 days to guess your password. - If you added a single character to “P@ssword” to form “P@ssword1” it would take the hacker 18 years to guess the password. - If you added two characters to “P@ssword,” to form “P@ssword11” it would take the hacker 1,707 years to guess the password. So on and so forth until you arrive at some astronomical numbers. See the table below:
Note the bottom right corner of the table. If your password is 12 characters long, contains uppercase and lowercase characters, a digit and a special character it may take over 15 million years for a hacker to guess your password. This is the simple math behind blanket recommendations to increase your password complexity. NOTE: The math in the above assumes the hacker is randomly generating password guesses.
Originally posted by winofiend
Id say this also depends on the hacker having access to the system that stores your passwords to access the password files.
I don't know of any place that allows unlimited attempts at entering your password before it locks you out.
Having the hashed password files would be certainly required for this to be a worry for the average user.
But good advice on the complexity of what your password should be. having seen plenty of leaked passwords from times gone by, it's so insane how many people use simple phrases and dictionary words, or.. password it self.
it depends too I guess, I never really used my yahoo email account I had set up from years back, and then I got bounced fail messages to the alternative address I'd set up with it, and realised it had been hacked. Awesome yahoo.. Oo
my only concern was wondering how many services I'd used the same password on at the time. lol. Brain like a sieve, if I don't have it written down - and I don't - then I need to know it.. and I even forget phone numbers unless I can remember the pattern on the key pad.