Changes
'''Exercise:''' Firefox users install the http://noscript.net/ extension; Chrome users install [https://chrome.google.com/webstore/detail/notscripts/odjhifogjcknibkahlpidmdajjpkkcfn NotScript] extension.
===Step 3: Prevent profiling===
Many people find it difficult to remember passwords and end up creating something that is related to their personal life or interests. For example, a user in New York City might choose 'manhattan' or 'yankees2012' as their password. Perhaps they will use their child's name and year of birth or the name of their pet dog.
'''Media:''' A [http://xato.net/passwords/more-top-worst-passwords/#more-269 study] of the most commonly used passwords and one covering password [http://arstechnica.com/security/2012/08/passwords-under-assault/2/ hacking] techniques
A common tactic in password hacking is called profiling – finding out personal details that may have been used as your password. By mining your Facebook, LinkedIn and other public profiles the attack will learn a lot of information about your identity and begin to guess and figure out your passwords.
{{#ev:youtube|ANXYxDBzleg}}
===Step 4: Prevent brute force attacks===
Computers can figure out your password by trying all possible combinations of letters and numbers. A brute force attack usually begins with a dictionary attack – the computer tries every word in the dictionary as your password. This would take a human a long time to attempt, computers can do it at speeds of up to a million passwords per second. Should a dictionary attack prove unsuccessful, all possible combinations of letters, numbers and punctuation is attempted as your password. This method would inevitably find your password sooner or later, the only barrier is time.
{|
|Length/Variations
|26
|36
|52
|68
|-
|3
|0.18 seconds
|Pie
|0.47 seconds
|1.41 seconds
|3.14 seconds
|-
|5
|1.98 minutes
|10.1 minutes
|1.06 hours
|4.0.4 hours
|-
|8
|24.2 days
|10.7 months
|17 years
|1.45 centuries
|-
|10
|44.8 years
|1.16 millenia
|45.8 millenia
|45, 582 millenia
|}
