Puppy Linux Discussion Forum

[Barkin]

[Barkin]

Just remembered Puppy can calculate MD5 via console (aka terminal) ... http://puppylinux.org/wikka/md5sum

http://www.puppylinuxfaq.org/how-to/20-linux-tips/44-copy-and-paste-to-terminal.html

[nooby]

Does this affect the vulnerability that I read about yesterday?
I try to find links this one and another that I don't find now

http://blogs.computerworld.com/19518/brute_force_tools_crack_wifi_security_in_hours_millions_of_wireless_routers_vulnerable
this maybe
http://en.wikipedia.org/wiki/Wi-Fi_Protected_Setup

only four pin security despite having 8 pin. They only need to brute force
the first 4 pin and then they know the rest? Too easy is it not?

[Barkin]

[shoutcrown]

Hi barkin!

A long time ago I had to learn many long email passwords (what a waste of time!)

Thanks a lot!

[puppy_apprentice]

we don't understand each other, but nevermind

i didn't said that prepare paswords using MD5 or wathever is bad methode, i only give u example of my methode to store passwords, again:

i understand that using for eg. facebook: facebook+salt (where salt is secret word/char chain knwown only for u, stored in your head), is easy to remember (facebook describe online service an salt is used to make a "variation" of word facbook, so if cracker will use dictionary where he has word facbook and he will make hash of this word he don't find your pasword because your hashed password is not facebok but facebook+salt)

and it is ok, but i use some forums, some other sites and i have on everyone another nick name (eg. here is puppy_apprentice on another i have another nicknames) so as i have small head and can' remember all mu logins and passwords i'm using programs called password managers

in every password manager u have to first create your passwords database, create for this database master password, and add entries for all your password, whole database will be stored on hd and encrypted with Blowfish or AES etc., to retrieve your password u have to only remember your main password for your passwords database

eg. for Password Dragon (it is Java tool so works everywhere, whre Java is installed):

everytime when u want to open your password database u have to write your master password (it will be stored inside your passwords database and encrypted with Blowfish alghorithm so is safe)


my database (it is only example):


Password Dragon has password generator which i use to generate passwords for my accounts if i'm bored to invent my very own combination (you use MD5 for this, ok):

[shoutcrown]

Hi puppy_apprentice!

OK!. Database seems to be very useful. Thanks

[RetroTechGuy]

[shoutcrown]

hi RetroTechGuy!

thanks!

[Wognath]

Thanks to all of you. This topic was an interesting and entertaining read!!

I'd like to put in a plug here for truecrypt. www.truecrypt.org
I keep my tax files etc. in a truecrypt archive. [edit: it's a netbook and I travel with it. ]

My password list is also in there, but I'm definitely going to convert the more important passwords (bank, newegg, etc.) over to that elegant MD5 method.
Wognath

edit: Most of my sites of interest have max of 12-16 characters in password, Several require at least 1 character other than number or letter.

[RetroTechGuy]

[shoutcrown]

hi!
thanks!
I appreciate more information about security...
bye!!!

[Wognath]

Hello again,
Is there a reason why people seem to recommend Keepass, Gorilla etc. but not FPM2 (included with recent puppies)? Is there something wrong with FPM2 that I should know about?? Thanks
Wognath

[puppy_apprentice]

there is not problem with FPM2 i think, it uses good encryption algorithm (AES), some could prefer eg. Gorilla or Keepass because those apps are multiplatform (or they were using them on Windows so it is easier to use something on Linux that they know)

[Wognath]

Thanks, puppy_apprentice. I finally have FPM2 working the way I want, so you gave me the answer I wanted! And thanks for the grc link above (page 1)--interesting stuff.