facebook rss twitter

The 106 forbidden passwords from the BlackBerry 10 OS

by Mark Tyson on 4 December 2012, 10:30

Tags: PC

Quick Link: HEXUS.net/qabpxv

Add to My Vault: x

BlackBerry phones are big on security; so they should be, as we know they are a favourite platform for corporate and government employees. With this in mind the firm has decided to pro-actively block a long list of useless, common and obvious passwords from being adopted by BlackBerry 10 users. The list, published by BlackBerry fan site Nerdberry includes such password classics as 123456, secret and qwerty.

I’ve inserted the PasswordService.properties list from the BB IdM server below. This list is expected to grow in the future to include further obvious password classics. Asterisks have been inserted to protect the innocent…

1=123456

2=12345678

3=123abc

4=a1b2c3

5=aaaaaa

6=abc123

7=abc123

8=abcdef

9=amanda

10=andrew

11=angel

12=asdfgh

13=august

14=avalon

15=bandit

16=barney

17=baseball

18=batman

19=biteme

20=brandy

21=buster

22=butthead

23=calvin

24=canada

25=changeme

26=chelsea

27=coffee

28=computer

29=cowboy

30=diamond

31=donald

32=dorothy

33=dragon

34=eeyore

35=falcon

36=fishing

37=football

38=freedom

39=f**kme

40=f**kyou

41=gandalf

42=george

43=harley

44=hello

45=helpme

46=hockey

47=iloveyou

48=internet

49=jennifer

50=jonathan

51=jordan

52=letmein

 

 

53=maggie

54=marina

55=master

56=matthew

57=merlin

58=michael

59=michelle

60=mickey

61=mike

62=miller

63=molson

64=Monday

65=monday

66=monkey

67=mustang

68=natasha

69=ncc1701

70=newpass

71=newyork

72=pamela

73=password

74=patrick

75=pepper

76=piglet

77=poohbear

78=pookie

 

 

79=princess

80=qwerty

81=rabbit

82=rachel

83=ranger

84=rocket

85=secret

86=service

87=shadow

88=snoopy

89=soccer

90=sparky

91=spring

92=steven

93=success

94=summer

95=sunshine

96=thomas

97=tigger

98=trustno1

99=victoria

100=whatever

101=wizard

102=zapata

103=blackberry

104=blackberryid

105=bbidentity

106=playbook

 

We recently learned that the new BB10 platform has achieved FIPS 140-2 certification. This is an important security certificate “required for sale of products implementing cryptography to the Federal Government”.  It is the first time that RIM have managed to attain this certification before a new OS is launched and it means that it “will be able to deploy BlackBerry 10 smartphones and BlackBerry® Enterprise Service 10 as soon as it is available.” With this clever bit of strategic fore-planning it would be a shame if a new BB10 user became the weakest link in the security chain by using such a dumb password as one of the above.

BB10 is expected to launch at the end of January 2013. Incidentally BlackBerry fans will be happy to know that a new prototype handset with a physical qwerty keyboard was recently revealed.



HEXUS Forums :: 13 Comments

Login with Forum Account

Don't have an account? Register today!
ncc1701 is a common password, seriously ? ¿

The Internet must be full of Star Trek nerds.
SUMMONER
The Internet must be full of Star Trek nerds.

This comes as a surprise to you!? :O_o1: ;)

I used to work with a system where the default admin password was the admin username followed by two dots. The first place I worked with this system had a policy to change that password every month, and the password was distributed to the select few users who were allowed access to that system (and woe betide you if you ever told anyone else ;) ).

I then went to work as a contractor at a place using the same system, and they were very shirty about giving people the password (even though I needed it to do the work I'd been contracted for). I eventually managed to find the password myself - in a batch file on an unsecured share :rolleyes: - and was a little surprised to find that, although they'd had the system for a couple of years, they were still using the default password. Yay security! :D
I use this tool https://chrome.google.com/webstore/detail/password-generator/knnhdfnkjgioaabddhfidbenpoeccggp - makes it rather easy. If it needs to be human rememberable then I write a little phrase… like “HungryElephantLikeEatGrassOnFridays?” (not actually one I use).
Heh, #52. I use to use this when I was first introduced into the world of computing many many years ago. I guess i'll just have to do what 90% of the people do and just add a 1 on the end.

Edit; #6 and #7 the same or am I blind?

Edit 2; #66 I have a family member that actually uses this when he registers to non important forums, I didn't realise it was a popular choice.
ncc1701 and zapata (plus a few others) are there but things like pa55word, passw0rd etc are not???