THE WHATIS.COM WORD-OF-THE-DAY April 30, 2001 password cracker ______________ TODAY'S SPONSOR: TechSanity Get smart fast! Get TechSanity! Ed Bott, author of 15 books on Windows and Office, serves up tips, tricks and help in this free newsletter. http://whatis.techtarget.com/techsanity/0,289905,sid9,00.html _____________ TODAY'S WORD: password cracker See our the definition with hyperlinks at http://whatis.techtarget.com/definition/0,289893,sid9_gci536994,00.html A password cracker is an application program that is used to identify an unknown or forgotten password to computer or network resources or to help a human cracker obtain unauthorized access to resources. Password crackers use two primary methods to identify correct passwords: brute-force and dictionary searches. When a password cracker uses brute-force, it runs through combinations of characters within a predetermined length until it finds the combination accepted by the computer system. When conducting a dictionary search, a password cracker searches each word in the dictionary for the correct password. Password dictionaries exist for a variety of topics and combinations of topics, including politics, movies, and music groups. Some password cracker programs search for hybrids of dictionary entries and numbers. For example, a password cracker may search for ants01; ants02; ants03, etc. This can be helpful where users have been advised to include a number in their password. A password cracker may also be able to identify encrypted passwords. After retrieving the password from the computer's memory, the program may be able to decrypt it. Or, by using the same algorithm as the system program, the password cracker creates an encrypted version of the password that matches the original. RELATED TERMS: password http://whatis.techtarget.com/definition/0,289893,sid9_gci213800,00.html cracker http://whatis.techtarget.com/definition/0,289893,sid9_gci211852,00.html algorithm http://whatis.techtarget.com/definition/0,289893,sid9_gci211545,00.html ________________ SELECTED LINKS [1] The SANS Institute has an article, "Password cracking using focused dictionaries." http://www.sans.org/infosecFAQ/authentic/cracking.htm [2] The CERT Coordination Center offers "Protecting yourself from password file attacks". http://www.cert.org/tech_tips/passwd_file_protection.html [3] SecurityWatch has a page about hacking (cracking) techniques. http://www.securitywatch.com/EDU/ency/hacking_techniques.html [4] SearchSecurity.com offers selected links to more about "Securing your Data and Information". http://www.searchsecurity.com/ ____________________ TECHTARGET FEATURE SQL For Dummies, 4th Edition By: Allen Taylor This book shows you how to use DBMS to define, administer, and process databases and their associated applications. It shows programmers how to incorporate SQL into programs for powerful data manipulation and retrieval, including operation on non-text objects such as graphical images and sound files. Take advantage of SQL's rich assortment of tools and powerful new object-relational features to snag all the information you need from your databases quickly and easily. http://www.digitalguru.com/dgstore/product.asp?isbn=0764507370&ac_id=76 __________________________ SUPPORT OUR SPONSOR! What do you like? Networks? Computer Games? Shareware? Get FREE info on the topics that interest you most. Postmaster Direct will find related news, information and special offers and deliver them directly to your e-mailbox, all at no charge! http://whatis.techtarget.com/postmasterDirect/1,289639,sid9,00.html _________________________ RECENT ADDITIONS [1] Windows Hardware Quality Labs http://whatis.techtarget.com/definition/0,289893,sid9_gci547957,00.html [2] gray http://whatis.techtarget.com/definition/0,289893,sid9_gci548160,00.html [3] dielectric constant http://whatis.techtarget.com/definition/0,289893,sid9_gci548179,00.html [4] TiVo http://whatis.techtarget.com/definition/0,289893,sid9_gci548191,00.html [5] Fast Guide to Technology News http://whatis.techtarget.com/definition/0,289893,sid9_gci546699,00.html To Remove your email address from the distribution list for this specific newsletter "Reply" to this message with REMOVE in the subject line. You will receive an email confirming that you have been removed. To Remove yourself from additional distribution lists or to update your preferences, go to the WhatIs.com registration page at: http://WhatIs.techtarget.com/register
