Create a Bloom filter of all passwords crackable within, say, 1 CPU-year of brute force, including dictionary attack and variations of capitalization, inserting numbers and punctuation. (Assume a weak PBKDF?) Publish it to help people avoid bad passwords.
A neat trick would be to produce this filter with less than 1 CPU year worth of work.
Not sure how useful this will actually be over other methods of avoiding bad passwords.
oclhashcat-plus
No comments :
Post a Comment