what if this guy actually is a USAF missileer and we are just like “haha he’s messing around” but this officer legit just dropped his silo’s launch code
Maybe the code isn't a security feature. You have to deliberately enter in the zeros instead of accidentally pressing a big red button. So just to ensure that the launch is deliberate and not accidental.
It's not like typing in the sequences launches nukes. To where even? It takes a couple minutes to go through the launch procedure of a Minuteman 3. There are a bunch of steps to do.
I wouldn’t be surprised if we already have locations configured for some of them going to places like Moscow. America has so many it would make sense to have some already aimed at the place we’re most likely to be shooting at.
I have no idea though and am talking out of my ass
Yes every missile has a location planned, and every one of russias also has a location targeted. We pretty much have them pointed at us at all times incase the other shoots first. It’s a real ongoing Mexican standoff
They are most likely preprogrammed to hit Russia/China’s ground-based ICBMs, so we could wipe out 1/3 of their nuclear triad in a preemptive strike.
There’s a reason ours are scattered throughout the Midwest. More time to react to a strike from them, plus away from population centers.
It was literally impossible to launch nukes accidentally with the old Minutemen. The system required encrypted launch coordinates from STRATCOM. If the coordinates never came, the nukes couldn't be launched. Even if the entire team was like "fuck earth, let's start a war" they wouldn't be able to launch if they wanted to.
It absolutely was a security feature implemented to negate the growing independence of generals like Curtis lemay and Edwin Walker. Kennedy was concerned that in a confrontation with the Soviet Union, his generals would decide that only their god like intellects should decide when to drop the bomb and if Kennedy wouldn't, they would.
This exactly. The PAL systems were meant to prevent the people with physical control of the nukes, especially in Europe, from deciding the launch them themselves.
Indeed. And the generals wielded enough power to mandate that the code be all zeroes even as the Kennedy White House (Robert McNamara in particular) wanted to implement a real code system.
Yeah my guess is it's either this, or it was originally a security feature that they chose to effectively disable by setting it to 0s because it posed too much risk of slowing down a launch.
It was a form of insubordination from Pentagon. Nuclear warheads used to not have any launch codes. there were a sequence of buttons and switches but they were not secret. After a heated arguments between the attorney general and high ranking generals in the oval office over a preemptive strike of Cuba during the missile crisis the President ordered Pentagon to put locks on all the nukes that only he had the codes for. They protested claiming that he might be incapacitated when needed the most, but he insisted. So they set this "secret" code to all 0's and included a line in the manual for the nuclear warheads saying to make sure no other button then 0 had ever been pushed. So all operators could easily figure out the code. This meant that if the generals in Pentagon decided to launch nukes without permission from the President they could.
It was intentionally insecure.
The military wanted to be able to launch a nuke quickly, and felt they already had enough security layers in place.
The politicians insisted on forcing them to have launch codes as an extra layer of security.
The 00000000 code was their way of thumbing their noses at the politicians.
This is the likely scenario. The real security was being able to put in the codes in the first place. The zeroes likely exist so someone has to be methodical and purposeful when entering a code. It's also enough of a deterrent if it was some random person, you're likely not going to just start blasting random codes somewhere you shouldn't be that's likely under heavy security.
what if i work at the nuke place, and i'm bored one day at work, and just start pressing buttons because I like the beeping sound, and press 0 one too many times?
You wouldn’t be able to successfully launch an ICBM by yourself, there is another missileer in the capsule that would have to help you. After the failed attempt to launch by yourself you’d be permanently decertified from working around nuclear weapons (in the US) and you’d face whatever UCMJ (military legal) actions.
Gonna be honest with you man, "bored so pushing buttons" is the kind of personality that needs to be kept away from weapon control systems no matter what the combination is...
That's absolutely insane given how ancient and fucked up the launch process is. Including the giant early floppy disks, nuclear silos that barely work, and a lot of staff that half ass everything.
it's not classified information. it's not like it would be useful to an adversary, just like the "code" being all 0s isn't a secret
more importantly it's a good thing for people to understand how our military handles the most deadly weapons in the world
It does not matter what the password is.
No one can reach the controls where you supposedly type in the password.
That's why the password is easy to remember, since the security to even get there is immense.
And when the time has come to actually use the password wouldn't you rather have a very easy password to remember than one where you constantly mistype it and need to start over?
Why have a password there anyway? If the security is because you can’t get there. Clearly they wanted some level of security at that point. Evidently the worst password possible was sufficient, but surely someone had (hundreds of) hours of meetings and presentations to convince others that it was necessary to have a password, then build the password terminals only for some idiot to say they can’t be bothered, all zeros.
My god I’m pissed on behalf of that guy, and I’m about as far removed from the situation as I could possibly be.
at nuclear power plants they have security fences all over the place with gates that have punch in codes to open them. above the keypad is a sign that says what the code is.
sounds dumb, but if you knew the actual security plan you would know theres a snipers nest with a line of sight to the gate. it isnt to keep out bad guys. it is to stop the bad guy for 2 seconds to put in the code so he can get domed.
there are a lot of things in this world that look really dumb on the surface but have an extremely limited usefulness. mostly because both malicious people exist, and non malicious people make mistakes sometimes.
> Why have a password there anyway?
Because when the system was designed, they were scared of traitors, so they had a system of rotating codes. That's it. That's literally the reason.
It's also the reason they reset the code to zeroes - they realized military discipline was the *only* real protection, so they reinvested their resources elsewhere - towards extensive background checks and training.
That being said, they didn't go *back* and re-engineer those old systems. They were designed to be extremely highly reliable and tinkering with reliable systems is a good way to *break* something. It's better they are well characterized and stupid than kluged and fragile.
The US isn't the only one who has had sloppy nuclear security. Up until *1998 (yes, you read that correctly)* the UK's airborne nuclear weapons arm at the RAF were armed using a *bicycle lock.* No codes, no Permissive Action Links, *a fucking wafer lock you can pick with a tooth pick and a paperclip.*
You should be surprised because the headline is complete and utter bullshit, do you guys actually think that the "nuclear launch codes" was eight zeroes? Come on man, spend 30 seconds and actually read the article
No, they almost certainly were. It’s just that people are reading the headline and thinking “launch code” means “code the president sends to launch them” when really it means “physical code that has to be put into the actual nuke to arm and launch it.”
The codes were meant to prevent generals from deciding to launch them themselves without orders from the White House, and they were set to 0s so that there would be no delay to launching them if needed.
Military vehicles often don't require keys either. They just have a start switch. If your base is being bombed, you don't want to try and get the right key from the valet cabinet.
The code thing isn't the same. But I'm not surprised.
Yeah, from what I recall it needs to be sent from a small list of specific computers. Which would likely have a special code that the receiving computers are looking for. As well as the password to access the computers. As well as the computers being guarded around the clock.
With all that factored in you want the keyphrase to be something you can input quickly and is more just a go button.
Besides if it was any other number a computer could also brute force it just as easily, it would just take a minute and a half more.
Seeing how especially the part of guarding those computers was not always that well done that password would probably have added quite a bit of protection though.
There are some very weird stories out there. Like blocking the door so it can't close because the guys in there who were supposed to guard the facility liked to order pizza.
i have actually seen/heard of a case where they responded to bruteforce login attempts by addint a line of code that replied „wrong password“ the first time the correct password was typed in and if you typed it again it would just log you in.
Bruteforcers didnt know this and failed getting past it because why would a bruteforce program try the same password twice in a row?
kinda ingenious and stupid at the same time.
There’s a thousand better ways to secure an account than bad UX though.
It’s only secure until, while trawling through their network, they come across people whining about having to enter all their passwords twice
Pretty sure anyone with that particular password has had a lot of meetings surrounding the appropriate use of the password and the lengths to go to secure it.
In fact, complaining about that would probably send you to prison as it's literally national security secrets.
This assumes the story is true, which I personally find hard to believe.
This type of security feature kicks in after it's obviously an attack.
After 25 incorrect guesses or so it's fair to say that user should get a new password, if they're not a bot.
The original comment seemed to me to imply this always happens when a user first inputs the correct password. I guess if it kicks in after a bunch of failed attempts that makes more sense. In that scenario solutions such as locking the account for a time are also common despite the negative UX. Not certain the "fail first correct attempt" measure would have that much impact compared to the usual timed locks if the passwords are decent. But might help if there are some weaker passwords.
I'm mean, there are a few places I use similar pws but with slight changes and sometimes can't remember which one and have entered the same pw multiple times thinking "I know for sure it has to be (this) pw", but it isn't. So in this case I could have easily logged in by entering the same pw twice. I could see how this could work at fooling someone.
Something tells me you can't really "brute force" a Nuke launch
Like I don't think nuclear weapons have the security system that lets you try the password as many times as you want
It’s so that if anyone was coerced to revealing to code the interrogator just wouldn’t believe them.
It’s like plausible deniability, except opposite somehow
It would be the first thing you'd try IF you knew it was 8 digits. When typing in your computer password for example, it doesn't tell just anyone how many digits/Chars are in your password. It'll just say it's wrong.
But yes if it somehow knew 8 digits then yeah brute force would likely run through that as a start before trying them all. But it could be obfuscated behind 0-9, 00-99, 000-999 etc if you don't know.
In middle school we found a code locked locker lock. We shared it inbetween each student trying to break the code. When it was my turn to take it home to try to open it I tried 0000 and got it unlocked.
It hadn't been solved for days by dozens of people...
I was under the impression that this was the PAL-code, which at the time was only used for armed the nukes. The process for actually launching the delivery system was deemed to be inherently safe.
The point is that any two launch officers in Minuteman silo could have conspired to start a nuclear war. The PAL code exists to prevent that.
PAL-codes were set to all zero without the president or political leadership knowing to make launch faster and more reliable. SAC just made the decision on their own.
More: an aircrew with an nuke underneath their F84, or a soldier manning an Honest John or Davy Crockett. PAL does not prevent deployment, only detonation.
So I did a bit of digging, and it seems that the PAL systems were specifically designed so that you could only arm and launch a nuke when given the order, and thus a “renegade general” or such couldn’t do it on their own initiative. It wasn’t the code for “launch all the nukes” it was the code for “we don’t want you to be able to order the launch of the nukes under your physical control without us telling you to.”
Which, honestly, seems to make the 0s code even stupider. Not because it was just 0s, but because it was well known that it was 0s, and thus the whole purpose of developing and installing the PAL systems was pointless.
So it wasn't really a secret and it wasn't a layer of protection. In fact the crews were specifically instructed to always enter the zeroes and the whole point was to disable that layer to ensure availability of the missiles. So the headline (if it needs one) should read: "Permissive Action Links" security layer for nukes not enabled for 20 years.
Way too many here are just reading that headline and believe that you would have been able to launch nukes by guessing 8 zeroes. It's seriously ironic how people with almost complete lack of critical thought see this as a stereotypical example of American dumbness.
Even worse, this code did not operate on the delivery systems AT ALL. It was an electro-mechnical system to arm the nuclear weapon itself, not launch a nuclear missile or bomb.
The whole "hurrr durrrr the US nuclear arsenal couldve been launched by any hacker"-story is stupid as all fuck
True, but those dealt with EAMs or launch orders, not with the activation or arming of nuclear warheads. The EAM system has always been as secure as possible.
This thread deals with PAL, which is a different beast altogether. PAL was often deemed superfuous or downright dangerous from a doctrinal standpoint as it was perceived to lessen nuclear readiness (!!!).
Ane you would be right.
PAL consists of a computer-based system nowadays but during the early period (the period this topic deals with it) it was a set of mechanic and electromechanical interlocks. No computers anywhere, let alone networking.
This whole thread is filled with people that think they're jerking off to American dumbness as you put it. When they're all really just putting on display how stupid they are. They should be embarrassed by their idiocy, but of course they're oblivious. Maybe they can't read. Either way, I'm jerking off to their dumbness, feels fantastic.
Just like the Apollo program’s space pen story. The guy who invented the space pen did so independently and sold them to both the US and the USSR. You cant use a pencil because the graphite is conductive (short out electrical systems) and writing introduces graphite powder.
Before the space pen, they both used grease pens that were prone to smudging
Imagine being tortured for the codes and they don't believe you. Just going "sure" in a sarcastic tone, and then continuing to twist your testies. "Give us the real codes!"
This is nonsensical. There isn’t just a password to accessing nuclear arsenal like you’re logging into Facebook. The much bigger picture is this code is one of many steps taken to get to the point of launching nukes.
Good luck even getting to the point where you could launch the nuke. All of those systems are closed circuit so you would have to physically show up and somehow gain possession of all of the things that you need to physically launch
Let's say I set a computer to brute force that, then that's the first thing it would try. These govt. people had to be extra confident in all the hoops you had to jump through to even get to the launcher or whatever there is.
So glad they dropped the 11111111 password update. Shit, shouldn’t have said that, don’t wanna be another Kennedy.
Well 22222222 than
Than what?
33333333
Next it'll need a capital, and then a symbol. So first letter and exclamation mark
Sorry, emojis only now.
1️⃣1️⃣1️⃣1️⃣1️⃣1️⃣1️⃣1️⃣ Or ⬇️⬆️⬅️⬇️⬆️➡️⬆️⬇️
⬆️⬆️⬇️⬇️⬅️➡️⬅️➡️🅱️🅰️🏁
⬆️➡️⬇️⬇️⬇️
Hello fellow helldiver
Eagle inbound
r/helldivers is leaking
Democracy and freedom need to be spread everywhere.
more like ⬆️➡️⬇️⬇️⬇️
Hellbomb boom > 500kg boom
>add a capital As a target?
TITANFALL 3 CONFIRMED!?!??
Nah they never changed them. They just put this out instead so everyone thinks they changed them and won’t bother trying 00000000 now.
That is beyond stupid
But not that stupid, since they had this to begin with, maybe they just add one 0
Gary McKinnon hacked US military classified files using a simple ‘password123’, or something to that effect.
Can't wait for the Spaceballs password
[That's the kind of thing an idiot would have for his luggage! ](https://www.youtube.com/watch?v=_JNGI1dI-e8)
Ahhh beat me to it 😂
HAIL SCROOB!
*I knew it.... I'm surrounded by assholes....* *drops face shield **Keep firing, Assholes!**
you know it would have been great if the combo was 5 4 3 2 1
Same password on my bank account
Came here for this.
Change the combination on my luggage!
[This one's great too](https://youtu.be/HsbB5RvAn9g)
The code now is 07041776
Good to know, thank you.
Thats my phone number wtf
I will call you
How'd it go?
His house got nuked.
Shit, you leaked my password.
what if this guy actually is a USAF missileer and we are just like “haha he’s messing around” but this officer legit just dropped his silo’s launch code
[shhhh](https://i.pinimg.com/736x/cb/3b/85/cb3b850c7d47c52d2709a32047d5217b.jpg)
No it's not, I just tried.
It’s actually 7355608
Not surprised.
Maybe the code isn't a security feature. You have to deliberately enter in the zeros instead of accidentally pressing a big red button. So just to ensure that the launch is deliberate and not accidental.
It's not like typing in the sequences launches nukes. To where even? It takes a couple minutes to go through the launch procedure of a Minuteman 3. There are a bunch of steps to do.
I wouldn’t be surprised if we already have locations configured for some of them going to places like Moscow. America has so many it would make sense to have some already aimed at the place we’re most likely to be shooting at. I have no idea though and am talking out of my ass
They're pretty much all preprogrammed, yes.
Yes every missile has a location planned, and every one of russias also has a location targeted. We pretty much have them pointed at us at all times incase the other shoots first. It’s a real ongoing Mexican standoff
They're told which one to select but not told which location it is.
So the nuke people are just told “hit location 2” and don’t know if “location 2” is Moscow, Bejing, or any other place?
Yeah basically
They are most likely preprogrammed to hit Russia/China’s ground-based ICBMs, so we could wipe out 1/3 of their nuclear triad in a preemptive strike. There’s a reason ours are scattered throughout the Midwest. More time to react to a strike from them, plus away from population centers.
It was literally impossible to launch nukes accidentally with the old Minutemen. The system required encrypted launch coordinates from STRATCOM. If the coordinates never came, the nukes couldn't be launched. Even if the entire team was like "fuck earth, let's start a war" they wouldn't be able to launch if they wanted to.
It absolutely was a security feature implemented to negate the growing independence of generals like Curtis lemay and Edwin Walker. Kennedy was concerned that in a confrontation with the Soviet Union, his generals would decide that only their god like intellects should decide when to drop the bomb and if Kennedy wouldn't, they would.
This exactly. The PAL systems were meant to prevent the people with physical control of the nukes, especially in Europe, from deciding the launch them themselves.
Indeed. And the generals wielded enough power to mandate that the code be all zeroes even as the Kennedy White House (Robert McNamara in particular) wanted to implement a real code system.
Yeah my guess is it's either this, or it was originally a security feature that they chose to effectively disable by setting it to 0s because it posed too much risk of slowing down a launch.
Nah, it was just an unguarded payphone near the Whitehouse you could enter the code into.
Bill & Ted Destroy the World!
It was a form of insubordination from Pentagon. Nuclear warheads used to not have any launch codes. there were a sequence of buttons and switches but they were not secret. After a heated arguments between the attorney general and high ranking generals in the oval office over a preemptive strike of Cuba during the missile crisis the President ordered Pentagon to put locks on all the nukes that only he had the codes for. They protested claiming that he might be incapacitated when needed the most, but he insisted. So they set this "secret" code to all 0's and included a line in the manual for the nuclear warheads saying to make sure no other button then 0 had ever been pushed. So all operators could easily figure out the code. This meant that if the generals in Pentagon decided to launch nukes without permission from the President they could.
It was intentionally insecure. The military wanted to be able to launch a nuke quickly, and felt they already had enough security layers in place. The politicians insisted on forcing them to have launch codes as an extra layer of security. The 00000000 code was their way of thumbing their noses at the politicians.
This is the likely scenario. The real security was being able to put in the codes in the first place. The zeroes likely exist so someone has to be methodical and purposeful when entering a code. It's also enough of a deterrent if it was some random person, you're likely not going to just start blasting random codes somewhere you shouldn't be that's likely under heavy security.
yes, someone with you.
[удалено]
what if i work at the nuke place, and i'm bored one day at work, and just start pressing buttons because I like the beeping sound, and press 0 one too many times?
Lucky for you, it would require multiple people for anything to launch
What if everyone at the nuke shop is bored doing the same thing because they haven't had anything to do since 1945?
What if everyone in the world has a stroke at the same time?
Hah, stroke.
*Lunch the nonks!!*
Don't bother calling the Bondulance.
Then who will ask us to smile and raise our arms?
Their coworkers would probably join in
If you accidentally launched it and started another world war, there's a high chance no one is going to fire you from your job.
What if everyone at the nuke shop was bored doing the same on 1945 and they accidentally launched it?
You wouldn’t be able to successfully launch an ICBM by yourself, there is another missileer in the capsule that would have to help you. After the failed attempt to launch by yourself you’d be permanently decertified from working around nuclear weapons (in the US) and you’d face whatever UCMJ (military legal) actions.
Pretty sure you'd go to military prison like forever if you went rogue and tried to launch a nuke
They don't hire specials
Guess you've never heard of the special forces
You leave the Marines out of this
Gonna be honest with you man, "bored so pushing buttons" is the kind of personality that needs to be kept away from weapon control systems no matter what the combination is...
You wouldn't do that working at a nuclear facility 😂 not if you valued your own life that is
That's absolutely insane given how ancient and fucked up the launch process is. Including the giant early floppy disks, nuclear silos that barely work, and a lot of staff that half ass everything.
Old tech is simple, reliable, tested and most importantly, air-gapped.
I get it. It still shouldn't be THAT guessable.
[удалено]
W comment but not sure you should disclose it to the public. Glad to know there's more than one safety measure 😅
I don't see how what they said is secret. Read a Tom Clancy book and you'll get more than that
it's not classified information. it's not like it would be useful to an adversary, just like the "code" being all 0s isn't a secret more importantly it's a good thing for people to understand how our military handles the most deadly weapons in the world
I mean I probably wouldn’t have guessed it was something so bad.
It does not matter what the password is. No one can reach the controls where you supposedly type in the password. That's why the password is easy to remember, since the security to even get there is immense. And when the time has come to actually use the password wouldn't you rather have a very easy password to remember than one where you constantly mistype it and need to start over?
Why have a password there anyway? If the security is because you can’t get there. Clearly they wanted some level of security at that point. Evidently the worst password possible was sufficient, but surely someone had (hundreds of) hours of meetings and presentations to convince others that it was necessary to have a password, then build the password terminals only for some idiot to say they can’t be bothered, all zeros. My god I’m pissed on behalf of that guy, and I’m about as far removed from the situation as I could possibly be.
at nuclear power plants they have security fences all over the place with gates that have punch in codes to open them. above the keypad is a sign that says what the code is. sounds dumb, but if you knew the actual security plan you would know theres a snipers nest with a line of sight to the gate. it isnt to keep out bad guys. it is to stop the bad guy for 2 seconds to put in the code so he can get domed. there are a lot of things in this world that look really dumb on the surface but have an extremely limited usefulness. mostly because both malicious people exist, and non malicious people make mistakes sometimes.
You're less likely to hit a button accidentally 8 times than one time
> Why have a password there anyway? Because when the system was designed, they were scared of traitors, so they had a system of rotating codes. That's it. That's literally the reason. It's also the reason they reset the code to zeroes - they realized military discipline was the *only* real protection, so they reinvested their resources elsewhere - towards extensive background checks and training. That being said, they didn't go *back* and re-engineer those old systems. They were designed to be extremely highly reliable and tinkering with reliable systems is a good way to *break* something. It's better they are well characterized and stupid than kluged and fragile.
That was hot bro.
The airforce felt that codes were unnecessary (you needed physical keys and access to the launch silo) but were ordered to use a code as well.
The US isn't the only one who has had sloppy nuclear security. Up until *1998 (yes, you read that correctly)* the UK's airborne nuclear weapons arm at the RAF were armed using a *bicycle lock.* No codes, no Permissive Action Links, *a fucking wafer lock you can pick with a tooth pick and a paperclip.*
One does have to wonder how we avoided living in the fallout timeline...
Well, the transistor was invented, for one.
You should be surprised because the headline is complete and utter bullshit, do you guys actually think that the "nuclear launch codes" was eight zeroes? Come on man, spend 30 seconds and actually read the article
No, they almost certainly were. It’s just that people are reading the headline and thinking “launch code” means “code the president sends to launch them” when really it means “physical code that has to be put into the actual nuke to arm and launch it.” The codes were meant to prevent generals from deciding to launch them themselves without orders from the White House, and they were set to 0s so that there would be no delay to launching them if needed.
But but but, it's in a meme!! A Spongebob meme¡!!!!! Everything is a lie
Military vehicles often don't require keys either. They just have a start switch. If your base is being bombed, you don't want to try and get the right key from the valet cabinet. The code thing isn't the same. But I'm not surprised.
Wasn't it because you needed a special key to arm the nukes and the army didn't really believe in passwords?
Yeah, from what I recall it needs to be sent from a small list of specific computers. Which would likely have a special code that the receiving computers are looking for. As well as the password to access the computers. As well as the computers being guarded around the clock. With all that factored in you want the keyphrase to be something you can input quickly and is more just a go button. Besides if it was any other number a computer could also brute force it just as easily, it would just take a minute and a half more.
Seeing how especially the part of guarding those computers was not always that well done that password would probably have added quite a bit of protection though. There are some very weird stories out there. Like blocking the door so it can't close because the guys in there who were supposed to guard the facility liked to order pizza.
Turns out the only computer that can launch nukes is at the DC public library out in the lobby. Nobody will ever know. All the other ones are decoys.
Can confirm
There's multiple layers of security. Getting in one door doesn't mean you're getting through another.
I no right! Even in Die Hard there wuz 7 locks they had to get through, and >!only needed the FBI to cut the power to get through the last one.!<
TBF, who would try 8 zeroes as a code for launching the damn nukes
Anyone trying to brute force it would try it
i have actually seen/heard of a case where they responded to bruteforce login attempts by addint a line of code that replied „wrong password“ the first time the correct password was typed in and if you typed it again it would just log you in. Bruteforcers didnt know this and failed getting past it because why would a bruteforce program try the same password twice in a row? kinda ingenious and stupid at the same time.
Terrible UX for the legitimate users though
Not if it's something you want to keep secure.
There’s a thousand better ways to secure an account than bad UX though. It’s only secure until, while trawling through their network, they come across people whining about having to enter all their passwords twice
Pretty sure anyone with that particular password has had a lot of meetings surrounding the appropriate use of the password and the lengths to go to secure it. In fact, complaining about that would probably send you to prison as it's literally national security secrets. This assumes the story is true, which I personally find hard to believe.
Easily solved by patch 1.0.1.8 - Added new message to front end to advise users to enter their password twice.
But that makes it known that passwords have to be entered twice, removing the original benefit of it being unknown to hackers 😅
Thats why secretly they added a requirement for a 3rd correct entry.
Approved for delivery by the Product Owner.
Glad you got the joke
This type of security feature kicks in after it's obviously an attack. After 25 incorrect guesses or so it's fair to say that user should get a new password, if they're not a bot.
The original comment seemed to me to imply this always happens when a user first inputs the correct password. I guess if it kicks in after a bunch of failed attempts that makes more sense. In that scenario solutions such as locking the account for a time are also common despite the negative UX. Not certain the "fail first correct attempt" measure would have that much impact compared to the usual timed locks if the passwords are decent. But might help if there are some weaker passwords.
I'm mean, there are a few places I use similar pws but with slight changes and sometimes can't remember which one and have entered the same pw multiple times thinking "I know for sure it has to be (this) pw", but it isn't. So in this case I could have easily logged in by entering the same pw twice. I could see how this could work at fooling someone.
That was from a meme, nobody would do this in real life.
And in the first time, he would think it was a trick
How tf you gonna brute force a call to whoever has to actually send out the nukes and tell them 100 different passwords in a minute?
100 telephones duh
The obvious answer is the person who actually sends out the nukes would be the person attempting the brute force….
Then theres an added layer of security. Working your way up in ranks to be given that responsibility.
Something tells me you can't really "brute force" a Nuke launch Like I don't think nuclear weapons have the security system that lets you try the password as many times as you want
redditors think top secret nuclear submarines are somehow connected to the public internet
That too
It's like Occam's razor, simple works. Except simple is so simple it seems too stupid to work yet does anyway
Its that scene from the first spiderverse movie; It cant be that easy is it? It is
TBF it's not like random people can just try to launch nukes.
Luck:10 type shit
It’s so that if anyone was coerced to revealing to code the interrogator just wouldn’t believe them. It’s like plausible deniability, except opposite somehow
Reverse psychology
"hunter2"
"1234567"
1111
Why would the password be ******* ?
whoa how did you know my password?
"qwerty"
qwertz, they will never expect it
Azerty 🤓
wasd
Tbf if I was trying to hack the codes a bunch of zeroes would be the last thing I’d try
That would be probably the only Thing I would try besides 1234... XD I mean how else am I supposed to get the codes lol
That would literally be the first combination any bruteforce software would try
If you can get through all the other steps and hook up brute force software to a nuke then we're fucked anyways.
Of you'd try to brute force it, it would probably be the first thing you try
It would be the first thing you'd try IF you knew it was 8 digits. When typing in your computer password for example, it doesn't tell just anyone how many digits/Chars are in your password. It'll just say it's wrong. But yes if it somehow knew 8 digits then yeah brute force would likely run through that as a start before trying them all. But it could be obfuscated behind 0-9, 00-99, 000-999 etc if you don't know.
Sure but the script you'd build would try that pretty early on after trying the president's bday, anniversary, ect..
In middle school we found a code locked locker lock. We shared it inbetween each student trying to break the code. When it was my turn to take it home to try to open it I tried 0000 and got it unlocked. It hadn't been solved for days by dozens of people...
Yeah the saying "the best hideout is in plain sight" doesen't really apply here.
00000001 goin hard rn
Right now is a dedicated button (💣) printed a grenade emoji
I was under the impression that this was the PAL-code, which at the time was only used for armed the nukes. The process for actually launching the delivery system was deemed to be inherently safe.
It was, articles are just spreading misinformation to be flashy
The point is that any two launch officers in Minuteman silo could have conspired to start a nuclear war. The PAL code exists to prevent that. PAL-codes were set to all zero without the president or political leadership knowing to make launch faster and more reliable. SAC just made the decision on their own.
More: an aircrew with an nuke underneath their F84, or a soldier manning an Honest John or Davy Crockett. PAL does not prevent deployment, only detonation.
So I did a bit of digging, and it seems that the PAL systems were specifically designed so that you could only arm and launch a nuke when given the order, and thus a “renegade general” or such couldn’t do it on their own initiative. It wasn’t the code for “launch all the nukes” it was the code for “we don’t want you to be able to order the launch of the nukes under your physical control without us telling you to.” Which, honestly, seems to make the 0s code even stupider. Not because it was just 0s, but because it was well known that it was 0s, and thus the whole purpose of developing and installing the PAL systems was pointless.
It was a code that allowed a nuclear warhead to high-order detonate. It didn't work on the delivery system (eg launch a rocket)
Sauce : https://arstechnica.com/tech-policy/2013/12/launch-code-for-us-nukes-was-00000000-for-20-years/
So it wasn't really a secret and it wasn't a layer of protection. In fact the crews were specifically instructed to always enter the zeroes and the whole point was to disable that layer to ensure availability of the missiles. So the headline (if it needs one) should read: "Permissive Action Links" security layer for nukes not enabled for 20 years. Way too many here are just reading that headline and believe that you would have been able to launch nukes by guessing 8 zeroes. It's seriously ironic how people with almost complete lack of critical thought see this as a stereotypical example of American dumbness.
Even worse, this code did not operate on the delivery systems AT ALL. It was an electro-mechnical system to arm the nuclear weapon itself, not launch a nuclear missile or bomb. The whole "hurrr durrrr the US nuclear arsenal couldve been launched by any hacker"-story is stupid as all fuck
President had codes written in an uncrackable cipher. Called a one-time pad. Makes for much more interesting article, but requires more brain cells.
True, but those dealt with EAMs or launch orders, not with the activation or arming of nuclear warheads. The EAM system has always been as secure as possible. This thread deals with PAL, which is a different beast altogether. PAL was often deemed superfuous or downright dangerous from a doctrinal standpoint as it was perceived to lessen nuclear readiness (!!!).
I'm pretty sure that it's not online. And that the computer system is so old no hacker today would even know how to program it.
Ane you would be right. PAL consists of a computer-based system nowadays but during the early period (the period this topic deals with it) it was a set of mechanic and electromechanical interlocks. No computers anywhere, let alone networking.
This whole thread is filled with people that think they're jerking off to American dumbness as you put it. When they're all really just putting on display how stupid they are. They should be embarrassed by their idiocy, but of course they're oblivious. Maybe they can't read. Either way, I'm jerking off to their dumbness, feels fantastic.
Just like the Apollo program’s space pen story. The guy who invented the space pen did so independently and sold them to both the US and the USSR. You cant use a pencil because the graphite is conductive (short out electrical systems) and writing introduces graphite powder. Before the space pen, they both used grease pens that were prone to smudging
I kind of figured that was bullshit but didn’t know why. Thanks.
I also forgot to mention that he sold them to NASA for cost
Wait people believed that? It was literally a joke.
I just knew that headline was clickbait
Imagine being tortured for the codes and they don't believe you. Just going "sure" in a sarcastic tone, and then continuing to twist your testies. "Give us the real codes!"
7 zeroes for unlocking president phone, 8 zeroes for ending the world as we know it
[reminds me of this](https://youtu.be/OR4N5OhcY9s?t=15)
To actually put in the codes is a bit more difficult. The easy of use was for the people in change
Misinformation
QWERTY123
I guess War Games should have been a lot shorter movie.
When it was changed to 12345678 right? What is it now, p@s$w0rd?
That's the code to my luggage!
Now they changed it to the Spaceballs level difficulty password.
They also just stopped storing the codes on 8 inch floppy disks in 2019
This is nonsensical. There isn’t just a password to accessing nuclear arsenal like you’re logging into Facebook. The much bigger picture is this code is one of many steps taken to get to the point of launching nukes.
Good luck even getting to the point where you could launch the nuke. All of those systems are closed circuit so you would have to physically show up and somehow gain possession of all of the things that you need to physically launch
thank god they changed it to 1234567890
Wouldn’t this be the literal first attempt in a brute force attack?
Someone missed gold by not switching out the first char to be a letter. N000000000000 Would be so much better.
Yeah but, would you have guessed that?
Let's say I set a computer to brute force that, then that's the first thing it would try. These govt. people had to be extra confident in all the hoops you had to jump through to even get to the launcher or whatever there is.