In the search for the correct password an attacker are no limits. They range from trying to scan any words to the password with sophisticated listening devices. To change the password not to forget, many users choose easy to remember words, such as their own first names, the names of family members, the name of their pet or the name of her friend. But words such as holidays, Boss, love, secret, password, or on the keyboard directly adjacent keys such as QWERTY ASDF or not so original as is assumed. In search of the attackers I try as much as possible about the person out. You overhear the conversations of their sacrifice to get the names of his friends, they search the garbage for bills, letters or packages, any clue could provide.
To change the password to remember that many users write down the password on a piece of paper and hide it to various places. They believe that no one would come to this hiding place. Typical hiding places for passwords are as below the desk surface, under the desk drawers glued piece of paper or Post-It Notes behind the monitor.
also known as "social engineering" known method in which the attacker posing as a network owner or a system administrator and the user to elicit his password works, more often than you might think. No system administrator is to it their login or password issues. Because of its rights on the system he can see all user data - including the password. Particular attention should be if the administrator turns on its own to them.
computer security starts with the award of a reasonably strong password. Passwords should not have a personal reference. Since the attackers often use password lists, should be used no words that appear in a dictionary or common usage are. Pass word lists are simple text files that are in turn oodles of words which are then tried by a program automatically. Thus, simple passwords be determined in no time. Pass word lists are available in virtually all languages and can be downloaded from the Internet on various sites.
Before awarding a password, you should familiarize yourself with the password policies on your system. On company computers are usually already set some guidelines about how such a password is. If this is not the case, you should put together their own password policies. The following guidelines are intended only as an example, depending on the sensitivity of the data could also be more stringent guidelines may be appropriate.
The password should ...
be the latest change at 6 months
be at least 8 characters long
not in a dictionary
are made up of letters and numbers
made possible special characters
mentioned are nowhere written down
not consist of words or numbers that a personal relevance and
no previously used password should
be at least 8 characters long
not in a dictionary
are made up of letters and numbers
made possible special characters
mentioned are nowhere written down
not consist of words or numbers that a personal relevance and
no previously used password should
The use of any letters, numbers and special characters surely was an especially good protection, but such strings are also very hard to remember.
With the online tool " password generator " you can such random passwords erstellen.Zusätzlich the program password generator download.
bypass the password in Windows 9x
The password of Windows 95 or Windows 98 does not provide useful protection against espionage or sabotage. To work around
The simplest version, the Windows password is, if you during the registration ESC key pressed, or the mouse on the "Cancel" option. It is also possible, the computer in Safe mode to start. Here, no password is required. However, the functionality of Windows in safe mode is very limited.
also offers the opportunity to rename the password files of Windows. You start the computer, and pushes the appearance of the screen "System Configuration" function key "F8". Then select the item "Restart in MS-DOS mode". At the command prompt to rename the password files from Windows with the command rename c: \\ windows \\ *. pwl *. zzz order and the computer restarts. When entering the password but the login appears the last user, but Windows will find the accompanying password anymore because the password files have been renamed. Then add a new password and confirm the password by re-entering the same password.
To this action to undo, to rename the password files with the command rename c:. \\ Windows \\ *. zzz pwl back to, deletes, copies of the password files using the command del c:. \\ Windows \\ zzz and drives down the computer again. Then everything is as it was before.
This method works only if in the Msdos.sys file, the entry "boot keys" is checked. If this is not the case, you boot the computer with a boot disk, rename the password files and allocates a new password. To boot a computer with a boot disk in the BIOS boot order be set so that the floppy drive is in first position, for example "A, C, CD-ROM".
Adequate protection from this intrusion variants does not exist. However, by the award of a BIOS password and change the boot order to C, A, CD-ROM "increasing security at least a little. Depending on the manufacturer the possible entries in the boot sequence is different, we must however make sure that the C drive is before the floppy drive. Furthermore, you should enter in the file Msdos.sys the line "boot keys = 0" and "boot delay = 0".
Image: Andrea Walla
Source: http://www.gaijin.at/manpwd.php
0 comments:
Post a Comment