Web Application Security
Password Blacklist Aug 14 2012 05:29PM
Reed Black (reed unsafeword org)
Can anyone recommend a good password dictionary, preferably one where
the author speaks to the method of its construction?

As part of our authentication system, I want to blacklist the most
commonly used passwords. I searched for dictionaries for use with John
the Ripper, hoping to use one of these. There is surprisingly little
overlap in the top terms among these different dictionaries. This
makes me unsure of their utility.

This is for a web service with an international user base, if that
makes a difference.

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus