Comment on "Anon" has problems with cybersecurity [Mod approved non-greentext]
Zachariah@lemmy.world 4 months agoYes, and the master should be a paraphrase not a password.
Comment on "Anon" has problems with cybersecurity [Mod approved non-greentext]
Zachariah@lemmy.world 4 months agoYes, and the master should be a paraphrase not a password.
RecluseRamble@lemmy.dbzer0.com 4 months ago
That’s just recommended to emphasize length. If your password is as long as a passphrase it’s likely more secure (harder to remember though).
Zachariah@lemmy.world 4 months ago
But if the point is to remember it, then you should use the security from length of series of 5+ random words. It’s easier to remember, write down, and type. All great characteristics of a master passphrase.
RecluseRamble@lemmy.dbzer0.com 4 months ago
I don’t disagree, sorry if it sounded like I did.
There’s just a theoretical weakness since the base word lists are usually public knowledge and bruteforcers could (and probably already have) optimize for that.
The advantages of a passphrase outweigh though as you mentioned. An attacker would first need your repo anyway.
rockerface@lemm.ee 4 months ago
I’m adding obscure memes and anime references to my passphrases. Good luck bruteforcing that