Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

@KoboldCoterie@pawb.social cover
@KoboldCoterie@pawb.social avatar

KoboldCoterie

@KoboldCoterie@pawb.social

Kobolds with a keyboard.

This profile is from a federated server and may be incomplete. Browse more on the original instance.

anders , to Memes
@anders@rytter.me avatar

Brute force protection

@memes

KoboldCoterie ,
@KoboldCoterie@pawb.social avatar

My current favorite "memorizable" method (obviously a random hash from a PW manager is still better) is to take a sentence of moderate complexity that includes the name of the service you're signing up for in it, and use the first letter of each word as your password.

For example, "When I wake up in the morning, the first thing I do is go to pawb.social."

Password would be "WIwuitm,tftIdigtps."

Easy to remember, immune to dictionary attacks, and you get a (mostly) unique password for each service, so stolen passwords can only access that one thing.

Edit: To be clear, the value is that you can use the same sentence everywhere, switching out the name of the service to generate semi-unique passwords for each service. Obviously someone analyzing your passwords would be able to figure out the pattern, but that's basically never what actually happens; it's more likely someone gets 1 password and tries your email address + that PW in a variety of services, which this is strong against.

KoboldCoterie ,
@KoboldCoterie@pawb.social avatar

It's surprisingly easy to memorize. The sentence basically acts as a mnemonic device to remember the password, and it's a lot easier to memorize a sentence that makes sense to you than to memorize something like "Tr0ub4d0r&8".

  • All
  • Subscribed
  • Moderated
  • Favorites
  • incremental_games
  • meta
  • All magazines
    •