Creating a password in 2023 be like (programming.dev)

submitted 1 year ago by likeaduck@programming.dev to c/programmerhumor@lemmy.ml

23 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] rog@lemmy.one 1 points 1 year ago* (last edited 1 year ago)

Best practice in 2023 is a simple, sufficiently long but memorable passphrase. Excessive requirements mean users just create weak passwords with patterns.
[Capital letter]basic word(number){special character}

Enforcing password changes doesnt help either. It just creates further patterns. The vast majority of compromised credentials are used immediately or within a short time frame anyway. Changing the password 2 months later isnt going to help and passwords like July2023!, which are common, are weak to begin with.

A non expiring, long, easily remembered passphase like
forgetting-spaghetti-toad-box
Is much more secure than a short password with enforced complexity requirements.

[-] kevincox@lemmy.ml 2 points 1 year ago

Drop "memorable". 99.9% of your passwords should be managed by your password manager and don't need to be memorized. On one or two passwords that you actually need to type (like your computer login) need to be memorable.

this post was submitted on 17 Jul 2023

15 points (94.1% liked)

Programmer Humor

32050 readers

1612 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 5 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

cat_programmer@lemmy.ml