break-in attempt in my machine
Chris Green
cl at isbd.net
Fri Sep 2 18:25:29 UTC 2016
On Fri, Sep 02, 2016 at 06:59:29PM +0200, J. L. wrote:
> On 02.09.2016 16:57, Volker Wysk wrote:
> > Am Sonntag, 28. August 2016, 11:39:07 CEST schrieb Karl Auer:
> >> By the way, anyone that has ssh access open to the world MUST take
> >> extra precautions. At an absolute minimum, any account that can log in
> >> via ssh MUST have a VERY GOOD PASSWORD - twenty or thirty random
> >> characters including numbers, punctuation and both cases. Otherwise you
> >> WILL get hacked.
> >
> > I have a 9-letter fantasy word as password. Something like "schwurbelfu". Just
> > lower case letters. So this is insecure? I doubt it could be cracked by
> > trying.
>
> Of course You could call me paranoid but passwords shorter than
> _at_least_ 20 random characters should be considered "obsolete" in these
> times (since among lots of other revelations the publications of Edward
> Snowden).
>
Passwords are only 'easy to break' if one has access to the system
where they are stored. It's not practical to brute force even a
fairly trivial password remotely.
So, yes I do have strong[ish] passwords but my main defence is simply
keeping my system physically secure and away from prying hands.
--
Chris Green
More information about the ubuntu-users
mailing list