List of common ' weak ' passwords.

  • Thread starter Thread starter taff
  • Start date Start date
T

taff

Weak passwords as used by the W32/Deloder.worm but also by many
others.
Using these as login, share or email passwords leaves your machine
vulnerable to attack by many worms. If you are using any of these or
similar passwords, change them as soon as possible.

0 . 000000 . 00000000 . 007 . 1 . 110 . 111 . 111111 . 11111111 . 12 .
121212 . 123 . 123123 . 1234 . 12345 . 123456 . 1234567 . 12345678 .
123456789 . 1234qwer . 123abc . 123asd . 123qwe . 2002 . 2003 . 2600 .
54321 . 654321 . 88888888 . a . aaa . abc . abc123 . abcd . Admin .
admin . admin123 . administrator . alpha . asdf . computer . database
.. enable . foobar . god . godblessyou . home . ihavenopass . Internet
.. Login . login . love . mypass . mypass123 . mypc . mypc123 . oracle
.. owner . pass . passwd . Password . password . pat . patrick . pc .
pw . pw123 . pwd . qwer . root . secret . server . sex . super .
sybase . temp . temp123 . test . test123 . win . xp . xxx . yxcv .
zxcv

Taff..............



www.sounds-pa.com | www.thecomputerworkshop.com
 
It should be also noted that a 'strong' password is...

8 digits or more
alpha-numeric
contains both upper and lowercase characters
and at least one special character such as the asterisk '*'

Dave



| Weak passwords as used by the W32/Deloder.worm but also by many
| others.
| Using these as login, share or email passwords leaves your machine
| vulnerable to attack by many worms. If you are using any of these or
| similar passwords, change them as soon as possible.
|
| 0 . 000000 . 00000000 . 007 . 1 . 110 . 111 . 111111 . 11111111 . 12 .
| 121212 . 123 . 123123 . 1234 . 12345 . 123456 . 1234567 . 12345678 .
| 123456789 . 1234qwer . 123abc . 123asd . 123qwe . 2002 . 2003 . 2600 .
| 54321 . 654321 . 88888888 . a . aaa . abc . abc123 . abcd . Admin .
| admin . admin123 . administrator . alpha . asdf . computer . database
| . enable . foobar . god . godblessyou . home . ihavenopass . Internet
| . Login . login . love . mypass . mypass123 . mypc . mypc123 . oracle
| . owner . pass . passwd . Password . password . pat . patrick . pc .
| pw . pw123 . pwd . qwer . root . secret . server . sex . super .
| sybase . temp . temp123 . test . test123 . win . xp . xxx . yxcv .
| zxcv
|
| Taff..............
|
|
|
| www.sounds-pa.com | www.thecomputerworkshop.com
 
David H. Lipman said:
It should be also noted that a 'strong' password is...

8 digits or more
alpha-numeric
contains both upper and lowercase characters
and at least one special character such as the asterisk '*'
Click to expand...

Hmm..the password I use to log in to my XP box (and pretty much everything
else) is: p8TU#lvZ

Doh! =)

-Tim
 
David H. Lipman said:
It should be also noted that a 'strong' password is...

8 digits or more
alpha-numeric
contains both upper and lowercase characters
and at least one special character such as the asterisk '*'

Dave
Click to expand...

l337 $p3@|< translators make good password generators.
 
I don't know what Compuserve used to generate passwords, but I still
remember mine:

stove*hot

Making the sucker long--pick a phrase, or use initials from the phrase--lots
of ways to do this.
 
"stove*hot" You have got to be kidding.....unless C.Serve likes cooking, as
back in the days when CompuServe had nothing to do with AOL (good days..)
and your email was a number. My generated password was "warm_noodles"

Also..never ever use a password that is a combo of lets say your birth
month, wife's birthday and children's birthyear. Those types are checked
very fast by most.
 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

...If you are using any of these or similar
passwords, change them as soon as possible.

0 . 000000 . 00000000 . 007 . 1 . 110 . 111 . 111111
. 11111111 . 12 . 121212 . 123 . 123123 . 1234 .
12345 . 123456 . 1234567 . 12345678 123456789 .
1234qwer . 123abc . 123asd . 123qwe . 2002 . 2003 .
2600 . 54321 . 654321 . 88888888 . a . aaa . abc .
abc123 . abcd . Admin . admin . admin123 .
administrator . alpha . asdf . computer . database .
enable . foobar . god . godblessyou . home .
ihavenopass . Internet . Login . login . love .
mypass . mypass123 . mypc . mypc123 . oracle . owner
. pass . passwd . Password . password . pat . patrick
. pc . pw . pw123 . pwd . qwer . root . secret .
server . sex . super . sybase . temp . temp123 . test
. test123 . win . xp . xxx . yxcv . zxcv
Click to expand...

I've heard of idiots using "password", but 0? 1? a???
Comon! Is anyone really THAT stupid to use one number
or one letter as their password?

Really! Anyone that uses these as passwords deserves
1) to get infected, and 2) to have the li'l man who
lives inside their monitor drawing the screen punch
them in the mouth. (Btw, his name is "patrick", hence
his name being on the li-- oh, never mind.)

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: http://www.queenofcyberspace.com/laura_fredericks.asc

iQA/AwUBQA2iRqRseRzHUwOaEQLs8ACdFRhkd0IKPYFELrb4ndSAiSSft6YAnRtg
ExzT1ilItJIeAiNz0fNHCW0U
=oqZn
-----END PGP SIGNATURE-----

--
Laura Fredericks
PGP key ID - DH/DSS 2048/1024: 0xC753039A

alt.comp.virus photo gallery:
http://www.queenofcyberspace.com/acvgallery/

usenet flamewars:
http://www.queenofcyberspace.com/usenet/

Remove CLOTHES to reply.
 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



I've heard of idiots using "password", but 0? 1? a???
Comon! Is anyone really THAT stupid to use one number
or one letter as their password?

Really! Anyone that uses these as passwords deserves
1) to get infected, and 2) to have the li'l man who
lives inside their monitor drawing the screen punch
them in the mouth. (Btw, his name is "patrick", hence
his name being on the li-- oh, never mind.)

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: http://www.queenofcyberspace.com/laura_fredericks.asc

iQA/AwUBQA2iRqRseRzHUwOaEQLs8ACdFRhkd0IKPYFELrb4ndSAiSSft6YAnRtg
ExzT1ilItJIeAiNz0fNHCW0U
=oqZn
-----END PGP SIGNATURE-----
Click to expand...

So the next time I get a customer bring in a dead monitor I know to
tell them that its Patrick's fault :-=))
I have had a few machines in with "a" as the password, at least they
don't forget what it is. Another favorites is " test ".

Taff............



www.sounds-pa.com | www.thecomputerworkshop.com
 
Aol std default reset password is ABC123,if your account is hacked and you
call aol to reset the password that is what they reset it to. EVERYTIME!
They ask you to change it again afterwards but few people do....

Cheers Dalt
 
Bill said:
I don't know what Compuserve used to generate passwords, but I still
remember mine:

stove*hot

Making the sucker long--pick a phrase, or use initials from the
phrase--lots of ways to do this.
Click to expand...

Another way to get a good password but make it "memorable" is to use two
related words that aren't phrases.

Think about a magic show. The magician says crap like "presto",
"abracadabra", "hocus pocus" etc. Now pick two short ones: presto and
hocus. Now throw in some numbers and caps for letters with a special
character: Prest0&Hocu5

One very tight password but easier to remember than a pure random sequence,
and a lot more secure than "MyPassword-<?>" where <?> is the month/week or
some other predictable sequence.

James
 
Its true, a lot more people use passwords like "0" than you think!!! i see
it everyday, and i mean, i see about 2000 people per day logging in to pc's
and they nearly all use stupid logins like 1111.
About 2 years ago someone gave me 3 old pc's from the "Hotel and restaurant
union" that they where going to dump! well within 3 tries i had the bios
passwords 1234.

Stephen
 
Weak passwords as used by the W32/Deloder.worm but also by many
others.
Using these as login, share or email passwords leaves your machine
vulnerable to attack by many worms. If you are using any of these or
similar passwords, change them as soon as possible.

0 . 000000 . 00000000 . 007 . 1 . 110 . 111 . 111111 . 11111111 . 12 .
121212 . 123 . 123123 . 1234 . 12345 . 123456 . 1234567 . 12345678 .
123456789 . 1234qwer . 123abc . 123asd . 123qwe . 2002 . 2003 . 2600 .
54321 . 654321 . 88888888 . a . aaa . abc . abc123 . abcd . Admin .
admin . admin123 . administrator . alpha . asdf . computer . database
. enable . foobar . god . godblessyou . home . ihavenopass . Internet
. Login . login . love . mypass . mypass123 . mypc . mypc123 . oracle
. owner . pass . passwd . Password . password . pat . patrick . pc .
pw . pw123 . pwd . qwer . root . secret . server . sex . super .
sybase . temp . temp123 . test . test123 . win . xp . xxx . yxcv .
zxcv

Taff..............
Click to expand...

You forgot P@ssw0rd.
 
|{evin said:
You forgot P@ssw0rd.
Click to expand...


nuts--I'd taken an earlier suggestion to use a translator, and now you've
outed me!

'gonna have to hire another assistant to think up passwords for me.
 
Dalt said:
Aol std default reset password is ABC123,if your account is hacked and you
call aol to reset the password that is what they reset it to. EVERYTIME!
They ask you to change it again afterwards but few people do....
Click to expand...
We moved to a new domain last week and that was the default password our
IT people assigned for 1st time log-on ;)
 
This is great, pretty soon we'll have a perfect list, then we can release a
good w.....
oh
uh-oh
that's already been done, hasn't it.
 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

'gonna have to hire another assistant to think up
passwords for me.
Click to expand...

At my last job, I set up a certain very-well-known
shipping courier's web interface for the entire
company, on the employees' computers. 250 people.
Most of 'em not computer-literate. (They used AOL at
home; need I say more?)

Rather then let the staffers select their own PWs
(which we know would've been either their first name,
initials or stupid ones like on the list posted in
this thread) I used a random password-generating
program. My criteria was eight characters,
alpha-numeric, mixed-case and symbols. The PWs it
generated were d0D?ewgE, ct3kFv#S, etc.

They loved me. (Not!)

P.S. And NO, I didn't send them their PWs in e-mail,
lol! I did a memo to each employee, and used sealed,
CONFIDENTIAL inter-office envelopes.

P.P.S. About 10% called me to change their PW. I
refused to change it to anything obvious. ;-)

P.P.S. And the ironic part... After everything we did
re. the security setup of the courier's new web
interface, it was all in vain. Why? Because when the
users printed out their package's routing slip to
attach to the package for the mailroom, their PWs were
shown IN PLAIN TEXT on the bottom! <gggrrrrrr> The
courier promised this info would be eliminated in the
next release of their software. (Absolutely
positively.)

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2
Comment: http://www.queenofcyberspace.com/laura_fredericks.asc

iQA/AwUBQA4ENKRseRzHUwOaEQK4qwCg/ODi8zmQNuWSsI0Y7WesvaMFRB0AoPbr
MV1V/7ETfAf+n9dU8E+HUuRY
=bQuG
-----END PGP SIGNATURE-----

--
Laura Fredericks
PGP key ID - DH/DSS 2048/1024: 0xC753039A

alt.comp.virus photo gallery:
http://www.queenofcyberspace.com/acvgallery/

usenet flamewars:
http://www.queenofcyberspace.com/usenet/

Remove CLOTHES to reply.
 
Tim H. said:
Hmm..the password I use to log in to my XP box (and pretty much everything
else) is: p8TU#lvZ

Doh! =)
Click to expand...

Mine was s3N!l3_d3M3nt1a

but I kept forgetting it.


Shane
 
Back
Top