this post was submitted on 15 Sep 2024
473 points (99.4% liked)
196
16450 readers
1805 users here now
Be sure to follow the rule before you head out.
Rule: You must post before you leave.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Pass PHRASES are much better anyway.
Nobody's gonna remember "pyf85ruGmmgæ&Oy_w48euaT0lt" so they'll either write it down, save it to their browser,or use a password manager, either of which makes it less secure.
On the other hand, something simple that doesn't necessarily make sense, say "AlmondsMakeFineGrenades" is difficult for both humans and machines to guess, but easy to remember.
Tl;Dr: an xkcd comic explaining it much better than I just did 😁
Using words in your password can undermine your security aswell, you need to include some other non-English stuff or you can be very vulnerable to dictionary attacks.
Only if they're predictable words and/or in a predictable order. No dictionary attack is going to guess the exact word combination above or equivalent any faster than the preceding keyboard mashing.
Unnecessarily adding complications only makes the pass phrase harder to remember and thus less effective.