RE: Good Passwords

["Raymond J. Henry" <62dart@xxxxxxxxxxxx>]

While the topic of computer security may be considered by some to be
off-topic, I believe it's pertinent, as we are all using computers to access
this mailing list. So spreading good information around amongst the group to
protect ourselves is a great idea.

Gibson's site is one good tool, but the password check page can be
misleading without proper understanding. First off, most people tend to rely
on "easy to remember" password. These passwords are the worst. The Internet
being what it is, if someone is targeting you specifically, they can learn a
fair bit about you prior to launching the attack. So, for instance, I own a
1962 Dart. Anyone that either knows me, or digs a bit on the Internet can
start there. That cuts WAY down on time used to crack a password that's too
obvious. Say I take "1962Dart" for my password. Then I figure I'm smart by
adding an exclamation mark to the end, making it "1962Dart!". Gibson's site
tells me that an online attack scenario would take 2.03 hundred thousand
centuries. I'm telling you now that with what I know, a hacker with a little
knowledge of me is going to figure that one out in seconds. So, obviously,
I'm never going to use that.

A good password is one that incorporates upper and lower case letters,
numbers, and special Characters. While my scenario did include all those
items, it also relied on personal information. That part is the bad part.
Passwords should never include anything too personal. So how do you create a
password that is reliable and safe, and one you can remember?

I suggest to people that they start with a special character, always. Pick
something perhaps you always thought was cool. "#" for instance. Avoid "!"
if possible, as that's the first special character on the keyboard, and one
most commonly used. So say we start with "#". Now we need to move on to
something you will remember. What was the size of the motor in your first
car? For me, it was 843CC. So I could take "#843CC". Still not good. Add to
that my first pet's name, spelt backwards. Say it was Rex. Separate that
from what I've already got by another special character. Make it "^" for
fun, it's easy to remember, Rex is going to have a hat. So now we have
"#843CC^xeR". Then to wrap it all up, let's throw in another special
character. Let's just use "%". Now we have "#843CC^xeR%". Gibson's site
tells me that we're looking at 1.83 billion centuries to crack that with an
online attack scenario, and I can tell you that your best friend that known
you since birth isn't going to figure out that password.

And when you need to use it, you remember "Pound. First engine. Hat for Rex.
Backwards Rex. Percent". I've walked countless people through this, many of
them well into retirement. Invariably, they fall in love with this idea, and
think that I have some great password skill. I don't, it's just
understanding how "the other side" works to try to get your information.
Never make it easy for them.

Moving on to other ways to protect yourself..... My favorites right now are
Avira Free for AV,  Advanced System Car Free (has the ability to protect you
against certain sites, wipes out history, etc), SpyBot (protects against
even more bad sites/stuff), and CCleaner (wipes out history, etc).

Last, but not least. Babysit yourself on the Internet. Porn sites are the #1
source of bad stuff (viruses, malware, adware, etc) on all the systems that
I've had to clean. Second is P2P (peer to peer) file sharing. Third is
email. If you want to get into porn or file sharing, I won't judge you. Just
educate and prepare yourself before jumping into it. Don't be going to any
orgies without a condom, is all I'm saying. When it comes to email, NEVER
open any attachments you weren't expecting, even if they appear to come from
your best friend. If you have to, send an email to the sender asking if they
sent you an email with an attachment what that attachment is, and why they
think you need it. Let them know why you're asking, you're practicing safe
Internetting...

While this email may seem lengthy, it's a short as I could make it to give
you the basics of being safe on the Internet. If anyone has any questions,
please feel free to email me off-list, and I'll try to help you as best I
can. I have never met a computer yet that I haven't been able to recover
from "the bad stuff", even after the "pros" have given up (their problem is
that someone has to pay the bill, and shop rates add up).

Getting back on topic, I'm thinking today may be the day my Dart goes into
storage for the winter. It's a sad day.....  :/

- Ray

-- 
--
Please address private mail -- mail of interest to only one person -- directly to that person. That is, send parts/car transactions and negotiations as well as other personal messages only to the intended recipient, not to the Clubhouse public address. This practice will protect your privacy, reduce the total volume of mail and fine tune the content signal to Mopar topic.  Thanks!

1962 to 1965 Mopar Clubhouse Discussion Guidelines:
http://www.1962to1965mopar.ornocar.org/mletiq.html and http://www.1962to1965mopar.ornocar.com/general_disclaimer.html.
-- 
You received this message because you are subscribed to the Google Groups "The 1962 to 1965 Mopar Mail List Clubhouse" group.
http://groups.google.com/group/1962to1965mopars?hl=en.