Do you feel angry when your file isn't encrypted by a extremely strong password?

Discussion in 'General Off-Topic Chat' started by OsQ_Oscar, Mar 2, 2018.

  1. OsQ_Oscar
    OP

    OsQ_Oscar Advanced Member

    Newcomer
    1
    Sep 22, 2016
    China
    I feel really angry that my 900GB file on chinese file hosting websites/google drive isn't encrypted by a extremely strong and strict password , they just passworded too easy with just winrar
    I feel crazy now , how can i establish really strict file encryption administrative from now on?
     
  2. FAST6191

    FAST6191 Techromancer

    pip Reporter
    20
    Nov 21, 2005
    United Kingdom
    If you are requiring silly strong encryption and are using google drive you have likely gone wrong somewhere.

    As for enforcing something... depending upon the method used it should say what it is -- if say my zip program gives me the options between ROT13 and RSA2048 you can make something to check it is the latter.
    Beyond that you can download the file and run it against a dictionary attack of your chosen style of dictionary*.

    Also why is winrar bad here? There is a phrase in security that runs security through obscurity is not security at all. Winrar is used the world over and is attacked constantly by people with genuine desire to get in. Something some kid wrote using a crazy long number of bits algorithm is not going to have been tested anywhere near as robustly as good old winrar, which probably still has crypto good enough that it is not going to be cracked this side of quantum computers.

    *the following is good for others playing along at home that might not know the more current real world stuff
     
    Nisem0n0, CallmeBerto and sarkwalvein like this.
  3. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    If you feel angry about it, you got a problem, get yourself looked at:P

    I USED to "like" having strong passwords like a decade ago because of Lavasoft's encryptor that allowed a password that was 800 characters long, but grew out of that face within a month or two after I started forgetting the passwords and needing to bruteforce that craziness to recover the files:rofl2:
     
  4. Ritsuki

    Ritsuki ORAORAORAORA

    Member
    5
    Mar 15, 2008
    Switzerland
    This.

    [​IMG]
     
    ry755, dAVID_, lexarvn and 1 other person like this.
  5. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    Actually, the best method is to have more numbers and to mix numbers between the letters of a word without substituting (eg: "g7re9at1h3oly5go6at" or something similar in a way that you can remember). Hardest possible to bruteforce or crack with 99% of the dictionaries/algorithms that are actually used and, just for the record, four random words are just SLIGHTLY harder to crack than the first example in that pic...
     
  6. Ritsuki

    Ritsuki ORAORAORAORA

    Member
    5
    Mar 15, 2008
    Switzerland
    What if the four words aren't separated? A bit off topic, but I think your combination might be more secure, but it would not solve the "difficult to remember" problem. But I'm no security expert, just some random thoughts so plz dont hurt me if I'm saying something wrong :(
     
    ThoD likes this.
  7. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    A dictionary with good algorithm can find the four words easily whether they are separated or not. What makes things harder to crack is if you mix the letters to make the words be different from the ones in the dictionary (eg: something like "love" is in the dictionaries so easy to guess while "l1ov3e" is not, so will take a LOT more tries to crack). This time, the numbers I used are actually those you'd use to replace "l" and "e", so easier to remember.
     
    Ritsuki likes this.
  8. Ritsuki

    Ritsuki ORAORAORAORA

    Member
    5
    Mar 15, 2008
    Switzerland
    Thank you, very interesting! Off topic again, but how/where did you learn all that stuff?
     
  9. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    Part of my job/degree is programming and since I make systems, I've also needed to learn security stuff and, with password cracking being literally one of the entrypoints to that, I've come to know how the most popular of the algorithms function. One bit of extra protection you can get for passwords on top of what I suggested is, if special characters are allowed (eg: "_"), use them not between words, but halfway through them instead and try to keep passwords at least 8 characters long with 2 or more numbers involved. I actually just go with 9 numbers (that happen to be the product serial of my long disposed of DSi), with a letter 2/3rds of the way through and an exclamation mark or "_" if allowed after the first character, never had stolen accounts:P Remember, people trying to crack passwords prioritize letters over numbers, so passwords made mostly of numbers are more secure.
     
    Ritsuki likes this.
  10. smileyhead

    smileyhead Press Start whenever!

    Member
    13
    Aug 31, 2015
    Hungary
    Hungary
    Okay, what's with you and your encryption-obsession? Why do you want everything you upload to the Internet be encrypted? Are you insecure? Are you Chinese folk constantly monitored by the country, or something? Also, what the everloving fuck do you store in a single 900 GB file?
     
    Catsinabucket, CallmeBerto and ThoD like this.
  11. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    I'm wondering about the encryption-obsession too considering he's made like 30 threads by now on such topics, but as for the 900GB, depending on the compression, it might be just random useless files or porn...
     
  12. smileyhead

    smileyhead Press Start whenever!

    Member
    13
    Aug 31, 2015
    Hungary
    Hungary
    Who stores porn that way? Does he download and unpack it every time he needs the contents?
    And if it's filled with useless files, why even keep them?
     
  13. ThoD

    ThoD GBATemp Maniac (apparently), but more like "bored"

    Member
    7
    Sep 8, 2017
    Greece
    True. The biggest archive I have is 9GB (and yup, it's ultra compressed porn), so I don't know what he needs 900GBs for, even a hundred games don't take that much!:/
     
    smileyhead likes this.
  14. smileyhead

    smileyhead Press Start whenever!

    Member
    13
    Aug 31, 2015
    Hungary
    Hungary
    Also,
    upload_2018-3-2_19-23-47.png
    That's the exact minute this was posted... Does he log out and only check back daily? :wtf:
     
    ThoD likes this.
  15. GerbilSoft

    GerbilSoft GBAtemp Addict

    Member
    11
    Mar 8, 2012
    United States
    Better question: If you uploaded a "900 GB" file, why didn't you encrypt it yourself instead of relying on the host to encrypt it for you? (Also, I don't know of any host that "encrypts" uploaded files using WinRAR.)
     
    CallmeBerto likes this.
  16. Zanoab

    Zanoab GBAtemp Regular

    Member
    3
    Dec 4, 2009
    United States
    You are missing the point. The idea is to make strong passwords that are easy to remember to avoid password reuse. Can you provide some math to backup your claim? The comic is giving each word 11 bits of entropy which assumes the user is randomly picking the words from a dictionary of two thousand and the cracker knows exactly four words, the dictionary, and no other alterations are made. This has been been argued since 2013 so I'm interested if you have something new to add.
     
  17. jefffisher

    jefffisher GBAtemp Advanced Maniac

    Member
    6
    Dec 17, 2006
    United States
    Post a link to the file and the password so we can look into it for you?
     
  18. linuxares

    linuxares I'm not a generous god!

    Moderator
    12
    Aug 5, 2007
    Sweden
    Dude why are you always posting about encryptions etc. on a mainly console focused forum?
     
    Catsinabucket and ThoD like this.
  19. the_randomizer

    the_randomizer The Temp's official fox whisperer

    Member
    22
    Apr 29, 2011
    United States
    Dr. Wahwee's castle
    I'm wondering why you're using WinRar when 7zip is far better and doesn't rely on nagware. Not to mention 7zip also can uses and makes RAR files.
     
  20. yusuo

    yusuo GBAtemp Addict

    Member
    9
    Oct 19, 2006
    I'm kinda with everyone else here, encrypt it yourself, problem solved
     
    Jayro likes this.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice