From: stefan@mailchuck.com   
      
   cal@invalid.com wrote:   
   >   
   > If a hacker hacks one's mail site and gets one's password, what   
   > difference does it make if that password is weak or strong?  Either way,   
   > the hacker gets it from the hacked e-mail site.  He then has access to   
   > the e-mail account no matter what the strength of the password was.   
   >   
   > What am I not understanding about the necessity for the need of a   
   > 'strong' password - or passphrase?   
      
   Passwords are usually hashed when stored on the server. There are big   
   hash tables on the Internet available and tools like hashcat or John   
   the Ripper try to crack those hashes. If a password is simple and   
   not long enough those tools do not need long to find your weak password,   
   due to  weak entropy. Read more about password entropy and you get the   
   idea.   
      
   HTH   
      
   Regards   
   Stefan   
      
   --   
   Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC   
   ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox   
      
   --- SoupGate-DOS v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)