your passwords
some hints like min. 8 letters, combined with numbers etc.
default passwords
The most common default password is <blank> or the 'Enter' password. (Don't forget to try just because its seem to be too easy to be true.)
- Website with a huge collection of default passwords for routers, AP's, switches etc. Sorted by manufactor.
Things NOT to do
where passwords should NOT be
- on a post-it sticker attached to the monitor
- in public dumpfiles of mediawikis [1]
- on this wiki page ;)
- tattooed to your forhead
- the name of your new born child
- your mantra
- in a dictionary
what passwords u should NOT use
A common passwords list by Openwall Project public domain
This is a list of over 3000 passwords most commonly seen on a set of Unix systems in mid-1990s, sorted for decreasing number of occurrences (that is, more common passwords are listed first).
FTP archives:
- ftp://ftp.openwall.com/pub/wordlists/ (and its mirrors)
- ftp://ftp.ox.ac.uk/pub/wordlists/
- ftp://ftp.zedz.net/pub/crypto/wordlists/
derived exclusively from the ox.ac.uk archive above, but files uncompressed
includes the ox.ac.uk archive and more
Warning: ironical
Examples: Good Passwords
something like
susi
peter
123456
qwertz/qwerty
asdfg
letmein
admin
root
irule
owned
or
(very good one)
g33k
Reset forgotten passwords
Mediawiki
UPDATE user SET user_password = MD5(CONCAT(user_id, '-',MD5('somepass'))) WHERE user_name = 'whatever';
MySQL
MySQL#Reset_forgotten_root_password
Windows
Microsoft: How to log on to Windows XP if you forget your password
Linux
Wenn du von einem anderen Medium bootest und auf einem System mit aktivierten Shadow Passwörtern die /etc/shadow bearbeitest und dort das verschlüsselte Passwort schlicht entfernst,also das (nur) das Passwortfeld leer lässt (::) kann man sich je nach Distribution direkt ohne Pass einloggen (Suse) oder muss zuerst auf einem anderen System ein bekanntes Passwort verschlüsseln und den daraus resultierenden encrypteten String einfügen (Debian).