So, I was doing some research last night, and I found something funny that I wanted to share. I posted this on Twitter, too, and I'm going to be including it in a couple talks I'm doing (if they post videos of the talks, I'll link them).
Anyway, I generated a bunch of
dictionaries for cracking passwords (bruteforcing guessing hashes -> passwords). I have, for example,
US cities, human names (from Facebook),
English words,
German words, etc. Yesterday, I decided to generate one that's based on the
Holy Bible (the King James version, for what it's worth). Then I tested it against the various password breaches I've collected to see what it's most effective against.
Now, I expected it to work well against the passwords from
singles.org and
Faithwriters, because they're religious sites. And it did -- over 8% of people at each of those sites used a variation of a Biblical word as their passwords. What surprised me, though, is that one site did better -- 12% of people from
a porn site used a variation of a biblical term as their password.
No other sites came close to the religious sites or porn site.
So, what do you think? Most people who like porn are sex-deprived Christians? People at porn sites choose biblical passwords out of guilt? Huge coincidence?