From what I can tell looking at the file, it doesn't seem to contain usernames, it's just a list of passwords. The intent would be to use it for brute force attacks, but even if you're able to try 10 passwords per second, that's still 1 billion seconds (over 30 years) to try all those passwords for a single account on a single site. If they were paired with usernames, it would be a lot more scary, but as it stands, I think the practical use of this list is limited. Even if you knew one of the passwords in that list is the one you're looking for, it would still be almost impossible to find the password you're looking for. If there's a version that does contain usernames as well, it would be a very different discussion.
@@kjyu4539 Unless you have access to a ton of computers, I think it's use would still be limited. Let's say you could test a thousand passwords per second (a fairly unrealistic target, as it usually needs to extract a file to test if the password was correct or not, which of course takes time), let's say you have the computer resources to do it, that's still almost 4 months to try all those passwords, and the password may not even be among those leaked. I think the bigger question is whether the creators of this list of passwords happen to have a version including usernames. That is where I'd be concerned.
From what I can tell looking at the file, it doesn't seem to contain usernames, it's just a list of passwords. The intent would be to use it for brute force attacks, but even if you're able to try 10 passwords per second, that's still 1 billion seconds (over 30 years) to try all those passwords for a single account on a single site. If they were paired with usernames, it would be a lot more scary, but as it stands, I think the practical use of this list is limited. Even if you knew one of the passwords in that list is the one you're looking for, it would still be almost impossible to find the password you're looking for. If there's a version that does contain usernames as well, it would be a very different discussion.
probably can be useful for offline cracking
like cracking archive file passwords like winrar
@@kjyu4539 Unless you have access to a ton of computers, I think it's use would still be limited. Let's say you could test a thousand passwords per second (a fairly unrealistic target, as it usually needs to extract a file to test if the password was correct or not, which of course takes time), let's say you have the computer resources to do it, that's still almost 4 months to try all those passwords, and the password may not even be among those leaked. I think the bigger question is whether the creators of this list of passwords happen to have a version including usernames. That is where I'd be concerned.
fckkkkk