Are 12 characters-long passwords secure enough or am I autistic

length is a meme now that lockouts exist and people know not to reuse p/ws

>>60601147
I personally don't use anything less than 64 characters unless the service has a follow-up security check in place like Steam with it's Steam Guard for instance.

>>60601195
>people know not to reuse p/ws
You seriously overestimate people

>>60601147
20 character long random passwords are the way to go

File: 1476982022977.webm (72KB, 720x405px) Image search: [Google]

72KB, 720x405px

20 random lowercase, uppercase, numbers, and symbols.
>mfw I watched the tech wizard rape the 6 character password on my porn folder when I was 11

echo -n password | sha1sum | awk '{print toupper($1)}'

protip: just write a phrase with a dot or comma in between. This makes passwords longer and harder to dictionary attack.

ie: S.i.c.k.f.u.c.k.

That's 16 characters yet painfully easy to remember.

>>60601472
DELET

>>60601472
Testing

>>60601552
Did you think it would be that easy?

>>60601472
>No numbers and one character repeats 8 times
Wew lad

>>60601552
>>60601571
Was getting caught part of your plan?

>>60601582
>one character repeats 8 times
So?

>>60601582
Thing is because of that repeating symbol, a dictionary attack is now virtually impossible.

You're also not limited to that symbol, you can replace the dot with the copyright symbol or some shit.

>>60601195
i reuse all my passwords

>>60601800
too bad, it's also a meme now that admins know about salting

>>60601147
My gmail password is 45 characters long.

My Office365 online password is 16 characters long because Microsoft only allows passwords with a max length of 16 characters online.

>>60601472
testing

>>60601222
my password is password123 everywhere
i ve never been hacked. If you are too autistic just make back-up of important stuff.
And no,your anime is not important stuff.

>>60601800
Then you're fucking retarded

>>60602531
I'm sorry, can you repeat the question?

>>60601195
>now that lockouts exist
Good luck now that hashes keep getting leaked

>>60601621
>Thing is because of that repeating symbol, a dictionary attack is now virtually impossible.
Haha, sure thing buddy

https://blog.elcomsoft.com/2009/04/smart-password-mutations-explained/

>>60602708
Wait shit that article was written by a retard

http://ieeexplore.ieee.org/document/7084670/?reload=true
http://www.wired.co.uk/article/password-cracking

>>60601147
if you actually care about this you move into 2/3-factor real fast

I usually go minimum 14 characters. Although it could be considered re-using the same key phrase,any of my passwords are all based around similar lay outs. I chose 2 random words from the dictionary and put them together to make 1 word that doesn't exist in any language. I then add 8 numbers. These number could be my birthday, or a relative's. Followed by the 4 numbers of an old bank pin, or a celebritys birthday. Followed by what this password is for. Followed by the same 8 numbers in reverse.

If it were for a bank it'd be something like LaughingCough66947832Bank23874966

>>60602554
How about your bank account? I kinda consider that important.

Every cryptographer recommends 128 bits of security. That's 16 bytes, not 16 characters.

If you actually want something that strong, and /dev/random strong, try something like:

https://tools.ietf.org/html/rfc1751

It's actually not hard to memorize if you only have 1 for a master password(for e.g. keypass).

>>60602916
Everything you do in my bank has to be confirmed thru sms code and big numbers with phone call.

>>60602931
Thank you for calling AutistBank. To speak with an autist, enter the first 20 digits of Pi.

>>60602926
What about my method of password creation?
see >>60601472

Assuming the password generated was at least 16 chars long, how safe would it be?

>>60603121
I don't think it's in a common pattern to bruteforce for but still doesn't make it secure, especially when you start talking about it on 4chan.

I wasn't really talking about bruteforce techniques though, it was about an ASCII somewhat easy to remember 128-bit random key, that you're guaranteed to be 128-bits strong unless there's a flaw in your random number generator.

>>60601147
Depends on how well mixed your password is.

>>60603158
"start talking about it on 4chan"
hahaha, i got . every even byte added to the usual cracker and halved bruteforce efficiency with my , every even byte scheme!
... just kidding, I got both added and quartered the efficiency to solve - every even byte!
... just kidding, I got them all added and eighthed the efficiency to solve what I'm actually doing!

>>60603158
Okay what if instead of a common special symbol a unicode symbol not on the keyboard was used?

ie: S©i©c©k©f©u©c©k©

ie: S2i2c2k2f2u2c2k2

If your password starts with a capital letter you have failed at password security.

>>60603201
Do whatever you want, you're just employing security through obscurity. Just assure yourself the base password you're using is outside of bruteforce range.

Anything you add to that only makes it stronger.

File: superscript1600.png (21KB, 1600x1600px) Image search: [Google]

21KB, 1600x1600px

>>60603201
shit, the 2 was supposed to be superscript. Not sure why 4chan rejected it, not like it's an emoji.

>>60603194
Fuck man, now you've completely sold me on my own password generation scheme. I'm gonna start changing all my passwords using this.

Though now I highly recommend using a unicode character not on the keyboard just to be safe.

>>60602931
But if your cellular provider password is the same, I could move your number to my burner phone.

>>60601147
Basically anything works as long you have symbols and numbers in the password.

>>60604419
I think >>60601472 is the best desu

You don't have to remember fucking long passwords filled with random letters numbers and symbols.

>>60601222
Check 'em