Testing password security
Hi - I've been using John the Ripper to test the security of my passwords (both user and root) and so far so good ... it's been running for just under 24 hours and it hasn't cracked them.
Does anyone know how long the software might take - on average - to figure out a root or user password? I suppose this is like asking, 'How long is a piece of string?' but for example, if it took just a couple of days should I change my passwords?
I'm not really worried about password security at this point, just curious. The programme is easy to use, and I'm pleased it hasn't found my passwords ... but I wondered if anyone had some experience using John the Ripper.