Steam's TTLG Username Database

gunsmoke on 27/1/2011 at 17:17

Mine was letters and numbers, I thought it was pretty strong. Hah, it is much longer and more complex now for sure.

Oh, will one of you guys check its integrity for me? It is haha fuck off spammer

Eric18 on 28/1/2011 at 04:41

ericd20

Feel free to add me.

Koki on 28/1/2011 at 06:46

Quote Posted by Nameless Voice

Yeah, I'd say make you have a decently strong password for anything that's actually worth money - Steam, Starcraft 2, eBay, PayPal, etc.

Why, do you expect your account to be bruteforced anytime soon?

Because if not, you might as well have a password. As in, a single letter "a". It's just as unguessable as q3f4weg5bkj7j.

june gloom on 28/1/2011 at 07:32

Meh, consider it just taking a careful precaution. Of course, coming from the guy who has no antivirus I don't know why I bother trying to reason with you.

Renzatic on 28/1/2011 at 07:47

Koki obviously doesn't know how brute force password cracking works. q3f4weg5bkj7j would take a few dozen hours or so to break. Throw in a few random capital letters and some random characters like q3F4wEG][5bKj+7j, and it'd take months to crack. If you can throw in ascii symbols, it'll takes years.

Usually if it takes more than a few hours, someone using the brute force method will move on to greener pastures. So yeah, you'll want to use something fairly complex if you've got something online to protect. Only an idiot would put their hundreds of dollars of online investments at risk by just using "a".

Nameless Voice on 28/1/2011 at 09:39

Quote Posted by Renzatic

Only an idiot would put their hundreds of dollars of online investments at risk by just using "a".

Oh, wait, maybe I should change some of my passwords.... :D

Briareos H on 28/1/2011 at 10:27

wow renzatic's post is even more cringeworthy than the kokipost to which he's replying

henke on 28/1/2011 at 10:53

Well enlighten us then Briareos. How does brute password cracking work?

Briareos H on 28/1/2011 at 11:02

I think it's more about using logical fallacies to insult someone on a point they didn't make and less about how brute cracking work.

Al_B on 28/1/2011 at 11:36

Quote Posted by Renzatic

q3f4weg5bkj7j would take a few dozen hours or so to break.

Not wanting to nitpick... 13 characters using a random combination of lower case letters and digits = 36 to the power of 13 different combinations to try. Assuming you don't have direct access to Steam's password database any attempt would have to happen over the internet so let's say it takes 1ms per attempt. To try all combinations of password it would take 5,409,111,117 years. You'd probably find the password sooner - but not in a time that I'd worry about.

It's much more likely that brute force attempts would use a known dictionary of common passwords. (And I'm sure that would include "a" if it is allowed by Steam's password rules so it wouldn't be a good choice).