Massive data dump containing millions of passwords sparks security alert: Is your data safe?

Lee Duna@lemmy.nz to Technology@beehaw.org – 77 points –
Massive data dump containing millions of passwords sparks security alert: Is your data safe?
techspot.com
39

You are viewing a single comment

Is it really safer? I mean when trying to bruteforce a password, one would have to make a guess whether it's a passphrase or not. But if you decided to check for pass phrases, wouldn't the one you posted be cracked in 5 times the amount of words in that dictionary? I'm not sure how large the vocabularies of the generators are, but I would guess a random 17 char password might be safer than a 5 phrases password?

but I would guess a random 17 char password might be safer than a 5 phrases password

And you would be very wrong about that. A 5 phrase password has entropy. "finance-caffeine-utopia-redress-unseen" is 28 characters. If you add in a different symbol between the words and add a number somewhere, this password becomes incredibly difficult to brute force.

I'll let xkcd explain it better.

Youre right,different separators, numbers and even capital letters change my theory alot