Sujet : Re: Password not strong enough
De : candycanearter07 (at) *nospam* candycanearter07.nomail.afraid (candycanearter07)
Groupes : comp.miscDate : 06. Jun 2024, 22:55:03
Autres entêtes
Organisation : the-candyden-of-code
Message-ID : <slrnv64boo.10ab.candycanearter07@candydeb.host.invalid>
References : 1 2
User-Agent : slrn/1.0.3 (Linux)
Scott Alfter <
scott@alfter.diespammersdie.us> wrote at 15:40 this Wednesday (GMT):
In article <lca3qeFjp85U1@mid.individual.net>,
Sylvia Else <sylvia@email.invalid> wrote:
LFPUxS5a2b3LWr1qt2RS
>
Password not strong enough.
>
Ye Gods! How strong do you want it to be?
>
KeePassXC says that password has about 108 bits of entropy. It
characterizes the password quality as "excellent."
>
As noted by others, it's probably some bullshit "password complexity"
requirement that you include some additional character types. I ordinarily
have KeePassXC generate passwords similar to what you were trying to use,
but with look-alike characters excluded (no I, l, 1, O, 0, etc.). With a
length of 20 or more characters, you're nearly always going to get a
stronger password than some site that requires you to choose from all
available characters...and then imposes a password-length limit. (The only
reason I can see for a length limit is that they're storing plaintext
passwords in their database, which is the textbook definition of "doing it
wrong.")
Maybe it's to prevent you from using such a long password that you
forget? Who knows.
-- user <candycane> is generated from /dev/urandom
Password not strong enough
Re: Password not strong enough