All,
I recently encountered a situation where strong passwords that were changed regularly weren't very strong at all for anyone who knew the "standard format". Before I show the code, I will demonstrate the math.

If you use upper/lower case letters, numbers, and just 10 special characters, each position in a password can have 72 possible values. If you require an 8 character password, this is 722_204_136_308_736 possible passwords. If you use a standard format for passwords to make them easier to remembering, you may be dramatically reducing that keyspace.

In this hypothetical example, 'a5X11y%B' may be one of the passwords generated but you only need to know 'a5X1' to know the whole password. Let me explain:

This has a key space of 26 * 10 * 26 * 10 = 67_600 and can easily be cracked using brute force. 

#!/usr/bin/perl
use strict;
use warnings;
use Algorithm::Loops 'NestedLoops';
use Win32::OLE;

my $file = $ARGV[0] or die "Usage: $0 <file>";   # Important to use fu
+ll path

# Win32::OLE Example Program
my $word;
eval {$word = Win32::OLE->GetActiveObject('Word.Application')};
die "MSWord not installed" if $@;
$word = Win32::OLE->new('Word.Application') or die "Can't start Word" 
+if ! defined $word;
$word->{Visible} = 1;

 
my @key = (['a' .. 'z'], [0 .. 9], ['A' .. 'Z'], [0 .. 9]);
my $next = NestedLoops(\@key);

while (my @half = $next->()) {
    my $pass = Gen_Pass(@half);
    my $doc = $word->{Documents}->open({
        'FileName'         => $file,
        'PasswordDocument' => $pass,
    });
    next if ! defined $doc;
    print "$pass\n", last;
} 

sub Gen_Pass {
    my @pass = @_;
    my %conv = (
        1 => '!', 2 => '@', 3 => '#', 4 => '$', 5 => '%',
        6 => '^', 7 => '&', 8 => '$', 9 => '(', 0 => ')',
    );
    my ($third, $first) = @pass[2, 0];
    push @pass, $pass[-1];                   # Duplicate the 4th numbe
+r
    push @pass, lc substr(++$third, 0, 1);   # Increment 3rd char and 
+lc it  
    push @pass, $conv{$pass[1]};             # Convert 2nd num to a sp
+ec char
    push @pass, uc substr(++$first, 0, 1);   # Increment 1st char and 
+uc it  
    return join '', @pass;
}

[download]
I do not endorse this type of activity for any other purpose then to help educate and institute change in policy. This is a contrived example and does not represent the "format" I actually saw. I was able to whip up less than 15 lines of code using Win32::OLE and Algorithm::Loops and found the password in approximately 10 minutes. The policy on passwords is changing as a result.

Cheers - L~R

In reply to Demonstrate Weakness of "Standard Format" Passwords by Limbic~Region

Title:
Use:  <p> text here (a paragraph) </p>
and:  <code> code here </code>
to format your post, it's "PerlMonks-approved HTML":


  • Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
  • Titles consisting of a single word are discouraged, and in most cases are disallowed outright.
  • Read Where should I post X? if you're not absolutely sure you're posting in the right place.
  • Please read these before you post! —
  • Posts may use any of the Perl Monks Approved HTML tags:
    a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
  • You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
            For:     Use:
    & &amp;
    < &lt;
    > &gt;
    [ &#91;
    ] &#93;
  • Link using PerlMonks shortcuts! What shortcuts can I use for linking?
  • See Writeup Formatting Tips and other pages linked from there for more info.