A poll, aimed in particular at people who think they understand the technologies around password cracking.
-
A poll, aimed in particular at people who think they understand the technologies around password cracking. Assume that there is at least one password that you need to be strong and need to remember & type not-infrequently. How many characters is enough for you to feel comfortable in 2024? Assume any char you can type easily is available.
[May need a follow-up poll if the majority is at >=12]
[Boost if you’re interested in the result] -
@timbray Hive Systems has a pretty neat table showing password cracking of bcrypt
http://www.hivesystems.com/library
password: cybersecurityforeveryone -
@gigantos @timbray That Hive Systems tables doesn't say how many workfactor rounds their Bcrypt table is for. We can increase rounds as technology advances. (Which I'm doing this week.) Also, I lock out any access after just a few failed attempts, and they're locked out for minutes. You couldn't get more than 2000 attempts in a day from anywhere in the world if you tried. You'd DDoS the server or burn it up calculating Bcrypt hashes before anything else happens.
-