{"video_id":"fakbwu5eQTs","title":"How to Choose a Password","channel":"Techquickie","show":"Techquickie","published_at":"2017-05-06T14:58:16Z","duration_s":373,"segments":[{"start_s":0.04,"end_s":8.0,"text":"when you really stop and think about it we live in a depressingly insecure","speaker":null,"is_sponsor":0},{"start_s":4.64,"end_s":9.679,"text":"unsecure both of them probably world","speaker":null,"is_sponsor":0},{"start_s":8.0,"end_s":16.279,"text":"chances are the only thing standing between your stuff and a bad guy are","speaker":null,"is_sponsor":0},{"start_s":13.32,"end_s":19.92,"text":"some very shatter Windows you're only a few feet from hitting another car head","speaker":null,"is_sponsor":0},{"start_s":18.039,"end_s":25.32,"text":"on when you drive down the street and your private conversations and finances","speaker":null,"is_sponsor":0},{"start_s":22.56,"end_s":30.119,"text":"are kept safe online by a short string of characters I mean I'm not trying to","speaker":null,"is_sponsor":0},{"start_s":28.119,"end_s":35.36,"text":"make you feel afraid or paranoid or anything but what I am trying to do is","speaker":null,"is_sponsor":0},{"start_s":32.559,"end_s":40.52,"text":"highlight the importance of password security many people are unaware that","speaker":null,"is_sponsor":0},{"start_s":38.32,"end_s":45.76,"text":"simply putting a password on something does not make it all that safe","speaker":null,"is_sponsor":0},{"start_s":43.68,"end_s":51.039,"text":"especially as lots of commonly used passwords are about as secure as a","speaker":null,"is_sponsor":0},{"start_s":47.96,"end_s":55.28,"text":"screen door in a hurricane I mean","speaker":null,"is_sponsor":0},{"start_s":51.039,"end_s":56.8,"text":"obviously passwords like quiry 1 2 3 4","speaker":null,"is_sponsor":0},{"start_s":55.28,"end_s":62.079,"text":"and the name of your favorite sports team are horrible choices because","speaker":null,"is_sponsor":0},{"start_s":59.0,"end_s":64.96,"text":"they're incredibly easy to guess but if","speaker":null,"is_sponsor":0},{"start_s":62.079,"end_s":70.88,"text":"you pick something that's obscure and difficult for someone who doesn't know","speaker":null,"is_sponsor":0},{"start_s":66.36,"end_s":74.2,"text":"you well to Divine does that necessarily","speaker":null,"is_sponsor":0},{"start_s":70.88,"end_s":77.32,"text":"even mean that safe well that all","speaker":null,"is_sponsor":0},{"start_s":74.2,"end_s":80.64,"text":"depends on the way passwords are stored","speaker":null,"is_sponsor":0},{"start_s":77.32,"end_s":82.479,"text":"secure websites hash your password","speaker":null,"is_sponsor":0},{"start_s":80.64,"end_s":88.4,"text":"meaning that it is passed through an algorithm that is extremely difficult to","speaker":null,"is_sponsor":0},{"start_s":85.52,"end_s":93.88,"text":"reverse with the output being what's stored on the server the problem though","speaker":null,"is_sponsor":0},{"start_s":91.36,"end_s":99.24,"text":"is that because many sites use the same algorithm such as the one in the","speaker":null,"is_sponsor":0},{"start_s":95.88,"end_s":102.92,"text":"commonly used sha series an attacker can","speaker":null,"is_sponsor":0},{"start_s":99.24,"end_s":105.079,"text":"run lots of common Andor short passwords","speaker":null,"is_sponsor":0},{"start_s":102.92,"end_s":111.2,"text":"through the hash quickly and then compare that to Hash password stored on","speaker":null,"is_sponsor":0},{"start_s":107.84,"end_s":113.799,"text":"a server to see if any of them match and","speaker":null,"is_sponsor":0},{"start_s":111.2,"end_s":119.28,"text":"even though this can be prevented using a technique called salting which adds a","speaker":null,"is_sponsor":0},{"start_s":116.68,"end_s":126.0,"text":"random numerical string to your password before running it through a hash many","speaker":null,"is_sponsor":0},{"start_s":122.479,"end_s":128.44,"text":"secure websites don't bother salting","speaker":null,"is_sponsor":0},{"start_s":126.0,"end_s":132.92,"text":"meaning it can actually be quite easy for an attacker to guess your password","speaker":null,"is_sponsor":0},{"start_s":130.52,"end_s":138.28,"text":"with Brute Force which means simply trying as many passwords as they can","speaker":null,"is_sponsor":0},{"start_s":135.239,"end_s":140.48,"text":"until one works in fact most eight","speaker":null,"is_sponsor":0},{"start_s":138.28,"end_s":145.599,"text":"character passwords can be cracked in only a couple of days using this method","speaker":null,"is_sponsor":0},{"start_s":142.959,"end_s":150.72,"text":"with a reasonably powerful modern PC fortunately though the solution is","speaker":null,"is_sponsor":0},{"start_s":148.48,"end_s":155.76,"text":"actually quite simple you use longer passwords having a pseudo random","speaker":null,"is_sponsor":0},{"start_s":153.28,"end_s":160.44,"text":"password with just 12 characters instead of eight means it could take thousands","speaker":null,"is_sponsor":0},{"start_s":158.68,"end_s":165.44,"text":"of years for someone to brute force your password instead of a couple days and if","speaker":null,"is_sponsor":0},{"start_s":163.519,"end_s":170.0,"text":"they eventually do succeed you'll probably be too dead to care of course","speaker":null,"is_sponsor":0},{"start_s":168.44,"end_s":175.8,"text":"you also want to make sure that your longer password doesn't incorporate","speaker":null,"is_sponsor":0},{"start_s":172.72,"end_s":177.84,"text":"other common password mistakes even a","speaker":null,"is_sponsor":0},{"start_s":175.8,"end_s":183.12,"text":"long password made up of shorter dictionary words or containing repeated","speaker":null,"is_sponsor":0},{"start_s":180.48,"end_s":188.799,"text":"strings of characters can be vulnerable due to those individual elements being","speaker":null,"is_sponsor":0},{"start_s":185.959,"end_s":193.48,"text":"easier to guess so while length is probably the most important variable the","speaker":null,"is_sponsor":0},{"start_s":191.56,"end_s":200.04,"text":"best thing to do is to use long passwords made up of random characters","speaker":null,"is_sponsor":0},{"start_s":196.44,"end_s":202.04,"text":"including symbols but Luke I guess the","speaker":null,"is_sponsor":0},{"start_s":200.04,"end_s":207.519,"text":"script was written for him how am I going to remember a huge password with a","speaker":null,"is_sponsor":0},{"start_s":204.239,"end_s":209.36,"text":"bunch of pound signs and colons in it","speaker":null,"is_sponsor":0},{"start_s":207.519,"end_s":214.92,"text":"well there are quite a few password manag out there that not only store and","speaker":null,"is_sponsor":0},{"start_s":212.4,"end_s":219.92,"text":"autofill your passwords but also generate pseudo random passwords quickly","speaker":null,"is_sponsor":0},{"start_s":217.879,"end_s":224.319,"text":"so you can use a different one for every site just make sure that whichever","speaker":null,"is_sponsor":0},{"start_s":222.319,"end_s":230.519,"text":"password manager that you're using stores all your passwords with heavy","speaker":null,"is_sponsor":0},{"start_s":226.84,"end_s":232.28,"text":"encryption including salting and yes","speaker":null,"is_sponsor":0},{"start_s":230.519,"end_s":237.159,"text":"there is a reason I keep saying pseudo random by the way instead of random","speaker":null,"is_sponsor":0},{"start_s":234.959,"end_s":242.48,"text":"software random number generators that pump out random passwords can never be","speaker":null,"is_sponsor":0},{"start_s":239.84,"end_s":247.519,"text":"truly random as they work by performing operations on a small initial number","speaker":null,"is_sponsor":0},{"start_s":244.92,"end_s":252.2,"text":"called a seed which introduces slight bias for certain characters of course","speaker":null,"is_sponsor":0},{"start_s":250.439,"end_s":256.32,"text":"for the purposes of creating a secure password this bias is negligible for","speaker":null,"is_sponsor":0},{"start_s":254.48,"end_s":260.28,"text":"most users so don't worry about that too much because after all in a universe","speaker":null,"is_sponsor":0},{"start_s":258.639,"end_s":268.8,"text":"where every action has some kind of a consequence can anything be truly","speaker":null,"is_sponsor":0},{"start_s":263.639,"end_s":270.32,"text":"random whoo speaking of wo audible.com","speaker":null,"is_sponsor":0},{"start_s":268.8,"end_s":276.0,"text":"is the leading provider of audiobooks with more than","speaker":null,"is_sponsor":0},{"start_s":272.199,"end_s":278.96,"text":"180,000 I mean imagine that for a second","speaker":null,"is_sponsor":0},{"start_s":276.0,"end_s":284.32,"text":"180,000 downloadable titles across all types of literature including fiction","speaker":null,"is_sponsor":0},{"start_s":280.919,"end_s":286.12,"text":"non-fiction and well I mean that pretty","speaker":null,"is_sponsor":0},{"start_s":284.32,"end_s":290.6,"text":"much covers it it's either about a real event or it's not or maybe it's","speaker":null,"is_sponsor":0},{"start_s":288.16,"end_s":295.68,"text":"somewhere in between audiobooks are great to listen to when you are I don't","speaker":null,"is_sponsor":0},{"start_s":292.44,"end_s":297.32,"text":"know stuck in traffic on the subway um I","speaker":null,"is_sponsor":0},{"start_s":295.68,"end_s":302.039,"text":"even had one of our viewers say that he listens while on his forklift at work","speaker":null,"is_sponsor":0},{"start_s":299.72,"end_s":306.52,"text":"please don't do that there are plenty of other great options like working out at","speaker":null,"is_sponsor":0},{"start_s":304.08,"end_s":310.56,"text":"the gym forklift drivers please have some awareness around you and for our","speaker":null,"is_sponsor":0},{"start_s":308.56,"end_s":315.36,"text":"audience members audible is offering a free 30-day trial just head over to","speaker":null,"is_sponsor":0},{"start_s":313.16,"end_s":320.24,"text":"audible.com tequ we've got that Linked In the video description and browse the","speaker":null,"is_sponsor":0},{"start_s":316.96,"end_s":322.639,"text":"over 180,000 audio programs I guess","speaker":null,"is_sponsor":0},{"start_s":320.24,"end_s":327.759,"text":"that's in there twice good job Colton download one title for free and start","speaker":null,"is_sponsor":0},{"start_s":325.759,"end_s":331.6,"text":"listening it's that easy to try out the service they got all kinds of great","speaker":null,"is_sponsor":0},{"start_s":329.28,"end_s":334.919,"text":"stuff including if you haven't had enough Star Wars and like you watch the","speaker":null,"is_sponsor":0},{"start_s":333.72,"end_s":340.639,"text":"movie like six months ago and you're like when's more Star Wars coming you can check out Star Wars bloodline New","speaker":null,"is_sponsor":0},{"start_s":338.28,"end_s":345.16,"text":"Republic by Claudia gray which takes place before episode 7 it might give you","speaker":null,"is_sponsor":0},{"start_s":342.96,"end_s":348.039,"text":"a little bit of insight into like some of the stuff that happened where you're","speaker":null,"is_sponsor":0},{"start_s":346.479,"end_s":352.319,"text":"like who are these people why do they know each other what are they","speaker":null,"is_sponsor":0},{"start_s":350.0,"end_s":356.72,"text":"saying so check it out and get a 30-day free trial at","speaker":null,"is_sponsor":0},{"start_s":353.84,"end_s":360.24,"text":"audible.com tequ thanks for watching guys if you like this video boom if you","speaker":null,"is_sponsor":0},{"start_s":358.68,"end_s":363.68,"text":"disliked it boom boom if you want to check out our other channels boom if you","speaker":null,"is_sponsor":0},{"start_s":362.039,"end_s":370.36,"text":"want to comment with a video suggestion boom and if you want to subscribe and follow come on","speaker":null,"is_sponsor":0},{"start_s":367.36,"end_s":374.24,"text":"subscribe or","speaker":null,"is_sponsor":0},{"start_s":370.36,"end_s":374.24,"text":"follow yes","speaker":null,"is_sponsor":0}],"full_text":"when you really stop and think about it we live in a depressingly insecure unsecure both of them probably world chances are the only thing standing between your stuff and a bad guy are some very shatter Windows you're only a few feet from hitting another car head on when you drive down the street and your private conversations and finances are kept safe online by a short string of characters I mean I'm not trying to make you feel afraid or paranoid or anything but what I am trying to do is highlight the importance of password security many people are unaware that simply putting a password on something does not make it all that safe especially as lots of commonly used passwords are about as secure as a screen door in a hurricane I mean obviously passwords like quiry 1 2 3 4 and the name of your favorite sports team are horrible choices because they're incredibly easy to guess but if you pick something that's obscure and difficult for someone who doesn't know you well to Divine does that necessarily even mean that safe well that all depends on the way passwords are stored secure websites hash your password meaning that it is passed through an algorithm that is extremely difficult to reverse with the output being what's stored on the server the problem though is that because many sites use the same algorithm such as the one in the commonly used sha series an attacker can run lots of common Andor short passwords through the hash quickly and then compare that to Hash password stored on a server to see if any of them match and even though this can be prevented using a technique called salting which adds a random numerical string to your password before running it through a hash many secure websites don't bother salting meaning it can actually be quite easy for an attacker to guess your password with Brute Force which means simply trying as many passwords as they can until one works in fact most eight character passwords can be cracked in only a couple of days using this method with a reasonably powerful modern PC fortunately though the solution is actually quite simple you use longer passwords having a pseudo random password with just 12 characters instead of eight means it could take thousands of years for someone to brute force your password instead of a couple days and if they eventually do succeed you'll probably be too dead to care of course you also want to make sure that your longer password doesn't incorporate other common password mistakes even a long password made up of shorter dictionary words or containing repeated strings of characters can be vulnerable due to those individual elements being easier to guess so while length is probably the most important variable the best thing to do is to use long passwords made up of random characters including symbols but Luke I guess the script was written for him how am I going to remember a huge password with a bunch of pound signs and colons in it well there are quite a few password manag out there that not only store and autofill your passwords but also generate pseudo random passwords quickly so you can use a different one for every site just make sure that whichever password manager that you're using stores all your passwords with heavy encryption including salting and yes there is a reason I keep saying pseudo random by the way instead of random software random number generators that pump out random passwords can never be truly random as they work by performing operations on a small initial number called a seed which introduces slight bias for certain characters of course for the purposes of creating a secure password this bias is negligible for most users so don't worry about that too much because after all in a universe where every action has some kind of a consequence can anything be truly random whoo speaking of wo audible.com is the leading provider of audiobooks with more than 180,000 I mean imagine that for a second 180,000 downloadable titles across all types of literature including fiction non-fiction and well I mean that pretty much covers it it's either about a real event or it's not or maybe it's somewhere in between audiobooks are great to listen to when you are I don't know stuck in traffic on the subway um I even had one of our viewers say that he listens while on his forklift at work please don't do that there are plenty of other great options like working out at the gym forklift drivers please have some awareness around you and for our audience members audible is offering a free 30-day trial just head over to audible.com tequ we've got that Linked In the video description and browse the over 180,000 audio programs I guess that's in there twice good job Colton download one title for free and start listening it's that easy to try out the service they got all kinds of great stuff including if you haven't had enough Star Wars and like you watch the movie like six months ago and you're like when's more Star Wars coming you can check out Star Wars bloodline New Republic by Claudia gray which takes place before episode 7 it might give you a little bit of insight into like some of the stuff that happened where you're like who are these people why do they know each other what are they saying so check it out and get a 30-day free trial at audible.com tequ thanks for watching guys if you like this video boom if you disliked it boom boom if you want to check out our other channels boom if you want to comment with a video suggestion boom and if you want to subscribe and follow come on subscribe or follow yes"}