nnh.co.uk Internet Archive Internet Archive

+$%VIRUS ALERT%+$> Part 1 - Password Protection

The problem of computer hacking/cracking and virus
production and distribution is on the increase. This
unsavoury pastime seems to be propagated partly by an urge
to simply find out how things work and then take them apart,
and partly just to be destructive for the sake of it.
 
The Internet is a wonderful place with so much technology
and knowledge. Incredible, constructive things can be created
with it, you can share this knowledge and your experiences
with others.
 
So why do people want to hack/crack and build viruses?
 
 
What must you know to protect yourself and your computer or
your business? Let's start with the basics, the thing you
probably do every day, connect to the Internet and download
your e-mail.
 
To connect you need a user name and password. This allows
you to connect to your ISP's mail server. If you give this
user name and password to anyone else, they can also connect
to that same mail server from their computer. They can
download a copy of every e-mail you receive and leave a copy
on the server for you.
 
So what is your user name? It is quite probably your e-mail
address so we are half way there. But your password now this
is the tough bit, or rather, let's see how smart you have
been?
 
Is it the name of one of your children? Your dogs name? Your
birth date? Your car registration number? Your mothers maiden
name? You're social security number? You telephone number?
If I knew you, and I could guess it, it should take about 30
minutes to access your personal or company e-mail and you
will never know.
 
Ok, so you have been a little smarter than this you have
chosen a word a random like 'cabbages' it has no association
with you whatsoever, except you once picked them for extra
money one vacation. And I would never guess it.
 
WRONG! It's easy because you used a word. That's right a
word, any word will do. I can use a program of which there
are over 150 and counting on the Internet that I can run
until it finds that word. It has all day to run it contains
the dictionary, it's a program it never sleeps, it never
eats. 'IT CAN NOT BE STOPPED' (Sorry Terminator my favourite
movie). Have you ever played chess against a computer?
 
If you use a password for anything, to access the Internet,
download e-mail, access your web site hosting account or
even an online diary make it a good password.
 
This is a password:
qlYfdUu5847dFg46s8 A SERIOUS PASSWORD
18 random letters upper and lower case and numbers.
qlYfdUu5847d this is also a password
qlYfdUu5 and this is too, JUST!
 
If you think you can't remember this think again, you are a
human, better than any computer.
 
Or you can always write it down. How about on that postit
sticker stuck on the edge of your monitor? Don't bother,
I have already copied it from there!
 
Do you know and trust everyone that has access to your
office? How about your employees (now we are really getting
paranoid). What is your company policy on giving out your
passwords to employees? What measures do you have in place
to change those passwords if an employee leaves? Always
REMEMBER your most important passwords.
 
So you have a good password and you keep it safe. I could
never guess it or get access to it. But have you ever heard
of social engineering? That's where you trust me, so you
just give me your password.
 
No way I here you say!
 
It goes like this. You get a telephone call. It's your ISP
here we are having a problem with e-mail jammed on the
server on your account. A lot of your IMPORTANT mail is not
getting through to you. But don't worry we really do
apologise, we are working on it. We need to check it's going
to the correct accounts, can you just read back your user
name and password JUST FOR SECURITY
SO THAT WE CAN CHECK, you shouldn't normally by the way.
That's great thanks it should be sorted in a few hours and
you don't need to do anything else. Bye…
 
In other words SO LONG SUCKER!
 
That's very basic but some of the best systems
Administrators have been fooled. Don't be one, paranoia is
your password friend.
 
 
Recommend this page to a friend
Reproduction of this article '+$%VIRUS ALERT%+$> Part 1 - Password Protection'
is permited as long as the following copyright and signature file is included.
============================================================
Publisher: http://nnh.co.uk
Copyright © NNH, nnh.co.uk
More articles like this and links to great Internet
resources can be found at: http://www.nnh.co.uk
============================================================
 
READ MORE ARTICLES LIKE THIS

 


Constructed and maintained by: NNH
Text images & layout - Copyright © NNH ™ -- 2000