Comments on: The Top 10 Most Common Passwords

By: Prospero

Prospero — Sat, 26 Apr 2008 09:04:31 +0000

I’m pleased to see that alot caught the number 1 most common password’s “Nearly 4 in 1000 mistake” My question is, which part is wrong? Is it nearly 4/10ths of 1% or nearly 4%, if it is the former, then does that mean all of them are off by one decimal place, I say this because if you add up the percentages of the top passwords, It’s hard to swallow that those passwords could account for such a large percentage, in my experience it’s hard to believe that those 10 passwords come close to accounting for almost 1 in 6 passwords. Does anyone else think this is a bit high?
Prospero

By: James C

James C — Mon, 07 Apr 2008 16:53:45 +0000

Most common password in the english speaking world is password1.
http://www.schneier.com/blog/archives/2006/12/realworld_passw.html
http://blog.washingtonpost.com/securityfix/2007/01/myspace_phishers_hook_hundreds.html

By: Mike Touch

Mike Touch — Mon, 07 Apr 2008 16:39:40 +0000

Interesting post, cheers.
Time to change my passwordsl ol

By: eM3rC

eM3rC — Sat, 09 Feb 2008 08:31:03 +0000

I think that using the first letters from a phrase or group of people you know in combination with letters, numbers and special characters might be an easy to remember and secure password.

Theres also the option of a post-it note or writing it down on a piece of paper and hiding it

By: Pantagruel

Pantagruel — Fri, 08 Feb 2008 13:05:48 +0000

rule of thumb is ok, but most users repeatedly chose a weak password just because they are afraid that they might forget a strong one. The once they consider strong are usually a permutation of name and birthday of spouse or other family members (for the singles take car brand, pet name, etc)

By: eM3rC

eM3rC — Fri, 08 Feb 2008 03:36:07 +0000

Wow this is awesome.
I though I saw a post like this but the top passwords were things like sex, god, hacker, etc

Glad my passwords are a little more complicated…

Isn’t the rule of thumb to have a word/letters some #s and possibly extra characters (!,%, etc)?

By: Joe

Joe — Thu, 07 Feb 2008 17:33:24 +0000

This was a very interesting read. Next time i’m trying to guess a password for whatever reason i’ll be sure to type in this list.

By: WI-FI-FUCKED

WI-FI-FUCKED — Sun, 15 Oct 2006 05:10:46 +0000

Figures, arsenal and 1234567 besides if your looking to crack any WPA in the united states try , imanidiot, god , jesus, mylordansavor, ihavenoedu, fuckliberals, domination, watistelnet , fukmiquik, ihatejews, ihateniggers, kkkalldaway, killevry1 ( if numeral opion is available)

By: Darknet

Darknet — Wed, 14 Jun 2006 17:36:59 +0000

Not during a pen-test, it’s part of the job, I’ve done the same excercise before and reported the results.

I guess if you didn’t mention any of the organisations the results were from there would be nothing wrong with it.

By: Navaho Gunleg

Navaho Gunleg — Wed, 14 Jun 2006 17:11:20 +0000

Ah I see — the article didn’t mention any of that.

But isn’t that illegal?