(rmondello.com)

430 points tambourine_man | 2 comments | 18 Oct 24 11:12 UTC | HN request time: 0.484s | source

Show context

eviks ◴[18 Oct 24 13:11 UTC] No.41879128[source]▶

Why not just use real words with longer password instead? That'd be easier to type than these shorter "word-like" syllables

replies(3): >>41879137 #>>41879148 #>>41879247 #

bombcar ◴[18 Oct 24 13:13 UTC] No.41879137[source]▶

>>41879128 #

Even if horse-battery-staple works mathematically people don't trust that it's "really random".

1password supports it as "memorable password".

replies(3): >>41879184 #>>41879233 #>>41879327 #

david422 ◴[18 Oct 24 13:24 UTC] No.41879233[source]▶

>>41879137 #

Here's a format I really like:

3CatsHave12Legs!

Easy to memorize, and pretty strong.

replies(4): >>41879283 #>>41879288 #>>41879303 #>>41879414 #

1. mr_mitm ◴[18 Oct 24 13:32 UTC] No.41879303[source]▶

>>41879233 #

The vast majority of passwords does not need to be easy to memorize because they should be stored in a password manager. In fact, I'd argue that the harder it is to memorize, the stronger the password.

Yet they still need to be typed on cell phone keyboards, TVs, or communicated over phone (shared passwords are the best compromise if asymmetric cryptography is not an option), in which case you usually need to spell it out anyway.

replies(1): >>41879352 #

2. bombcar ◴[18 Oct 24 13:38 UTC] No.41879352[source]▶

>>41879303 (TP) #

Cell phone keyboards should have a "QR code input" and then you could just use a QR code generated by your password manager dynamically.

↑

Apple Passwords’ generated strong password format