[ad_1]
You don’t need special characters to have a strong password my people, a random sentence will suffice…
[ad_2]
View Reddit by Heishi-Jager – View Source
[ad_1]
You don’t need special characters to have a strong password my people, a random sentence will suffice…
[ad_2]
View Reddit by Heishi-Jager – View Source
Passphrases are some of the most secure passwords
3 trillion years isn’t long enough for you???
Funny, but true. A random sentence not tied to you is so much stronger than random strings.
Correct Horse Battery Staple
Lol
I‘m leaving here,
With pain in my heart
Wanted to shit,
But I only fart!
and then you are like
* Capital or lowercase i
* was so itchy, or was itchy so
* asshole, butt or ass
Per Wikipedia, and factoring in some approximations (e.g. all words are on the Diceware word list, including “asshole”), this is about equivalent to a 22 character alphanumeric password, or 20 with all symbols and crap.
I don’t think that the password test that you are using is reliable.
The second value seems measured without considering that is a “meaningful sentence”, not a random seq of characters. I pretty sure that knowing this the cracking time is way lower.
Well, what if the mic is on and you say “my a**hole was itchy so i farted to scratch it” you just cracked their password.
This is not funny. This is factually correct.
Random character combinations like the first one is easier for compters to crack but harder for us to remember.
Longer, meaningful sentances like below, are easier for us to remember but harder for computers to crack.
Extra points if you replace some numbers with characters, like one a with @ and i with a 1
Mypasswordisthesameasnyluggage:1234.
Great, now I have to change my password…
Pass*phrases* people!
As the gatekeeper at work, our password requirement is 20 character length, at least 1 space required, at least 3 character sets.
Secures us from most password spraying attacks because most web services won’t even let you use a 20ch password, or spaces, and most users would rather die than use that long of a passphrase anywhere else.
Users hate it. But I don’t give a fuck. It works.
Assuming brute force attack. Dictionary attack will be much faster on this kind of password.
A space is considered a special character but, yes. A standard sentence works fine
Mine was
_I crapped myself so Maggie Thatcher stopped pegging me_
I had a thing for Gillian Anderson…
I think that website is not taking into consideration that the new sentence has a schema that is more susceptible to brute forcing or using a dictionary attack on each word of the passphrase.
Sure it’s more memorable, but that only encourages people to reuse the same set of phrases rather than have a unique phrase for each site.
Not to mention most websites don’t support white spaces in the password. The only reason the difference for a password manager is that white spaces are a valid character
i’m getting fed up with this orgasm.
I go to a random word generator, and spin the wheel until I find words that either go well together, or amuse me enough to be memorable. Then I add a random number, and I’m good to go.
I personally use the password: “mypass1word is excellent and nobody can crack it!~” for everything I have. It works wonders.
It’s still recommended practice to use unique passwords. Otherwise if there’s a leak or breach you’re fucked. And I’m not gonna remember 575 goofy phrases any more than I remember 575 randomized strings. So, password manager.
That’s BS.
Always use special characters, numbers, etc. In your passwords
Random sentence may suffice, but it’s not strong enough
Some places cap password length at 12 or 16. But yes, a good passphrase is as secure as random characters.
I usually do something like:
Require3-Yellow-Toast&
A short passphrase, with a randomly placed symbol and number with some capitalization, is a perfectly secure password. A phrase is perfectly easy to remember.
Also it is important to change passwords somewhat regularly.
Don’t password testers store the passwords so they can be tried by hackers?
Well yes but thats if the hacker has uses no logic whatsoever and simple plugs in random assortments of characters, if they write some code to only plug in words or smth it wont be as long, that said it still is a good passird
Sorry, your password must
* Include 1 capital letter
* Include 1 number
* Include 1 special character (!@#$%^&*)
* Must not be longer than 16 characters
Please try again
We’ve been lied to! Passwords with only letters (and not even one capital one!) are supposed to be the easiest one to crack!
I thought quantum computers could crack this quite fast, and this already more than a decade ago.
But I don’t know shit, I just read this somewhere
Give me 5 minutes and a teenager who likes fart jokes, and we’ll crack your password.
I don’t think the password test is estimating entropy for a dictionary attack, but rather testing permutations of characters
Password aside, I have experienced this.
Was only temporary relief, but it was relief nonetheless
I still used randomly generated by KeyPass for most accounts but there are several I wan’t to know my memory and be able to access, anywhere, on any device, if I don’t have my KeyPass Database, so I’ll use pass phrases for those.
Like OP said, pass phrases are way easier to remember and they are actually more secure, as long as there is more characters than the randomly generated. Even if you only use lowercase letters with no spaces, the password cracking software doesn’t know that, so it still has to guess the total possible characters per permutation. 96 possible characters on a keyboard as opposed to only 26 possibilities if only using lowercase lettters.
THIS IS WHY THERE IS SUCH A HIGH SUICIDE RATE IN TECH SUPPORT
**My Asshole Was Itchy So I Farted To Scratch It**
Oh my god! Its the same as what I have on my luggage!
The million year it would take for a normal password to get hacked completely invalidate the ridiculous security culture rules around passwords as essentially a lie, them pretending it’s protecting something when in fact it does nothing but inconvenience the user.
That basic minimum eight characters, three character types is more than enough. As long as someone doesn’t know you well enough to guess what you are putting in, nothing is ever going to have the free access to keep trying for years until it successfully brute forces a password. It’s a fantasy perpetuated by idiots who read a RFC and never once thought about it themselves.
If your account got breached, it’s always due to social engineering or successful phishing. The only angle anyone trying to breach systems for any reason need to use is the human one, because you are the security loophole.
And if only passwords didn’t have the special character and number requirement
Way to tell everyone my password, now I gotta change it
Is this a site that just steals possible passwords……?
Don’t use “beef stew.” It’s not stroganoff.
Rippedachainsawfart
Correct horse battery staple