• AnimalsDream ( AnimalsDream@slrpnk.net ) 
    link
    fedilink
    English
    arrow-up
    9
    ·
    6 months ago

    Better password practices:

    1. Use Linux. I’m only half-kidding. A Linux distro will have you typing your password in far more than you ever thought you should have to, giving you much more practice with password memorization.
    2. Chunk the passwords, like phone numbers. am!z - _hBg - kj47 - GEW is easier to memorize than am!z_hBgkj47GEW.
    3. Use a password manager.
    4. Use a password manager.
      • AnimalsDream ( AnimalsDream@slrpnk.net ) 
        link
        fedilink
        English
        arrow-up
        1
        ·
        6 months ago

        I don’t know where the entropy is at these days so I’m not sure exactly how many words are recommended at this point, but the issue with passphrases is that you have to treat each word like it’s one character. Instead of a lot of symbols, now you need a lot of words for a strong passphrase. It also has to be random assortments of words that make no sense, so passages out of any documents are not a good idea. That XKCD strip is definitely outdated because 4 words wasn’t enough even 10 years ago.

  • Blackmist ( Blackmist@feddit.uk ) 
    link
    fedilink
    English
    arrow-up
    4
    ·
    6 months ago

    I’ve long been of the opinion that passwords on their own aren’t fit for purpose.

    2FA has to be the way, surely? Most people are going to be a lot more careful with their phone than with a post-it note.