undefined | Better HN

0 pointshunter2_1y ago0 comments

But when someone tries to attack such a password, as long as whatever the user devised isn't represented by an entry in the attack dictionary, the attack strategy falls back to brute force, at which point a repetition scheme is irrelevant to attack time. Granted, if I were creating a repetitive password to meet a length requirement without high mental load, I'd repeat a more interesting part over and over, not a single character.

0 comments

borski1y ago

Sure. But most people add “111111” or “123456” to the end. That’s why it’s on top of every password list.

hunter2_OP1y ago

If cracking techniques catch the concatenation of those as suffixes to short undefined things, which I think many people would do at minimum, that would be worrisome indeed.

j / k navigate · click thread line to collapse

0 pointshunter2_1y ago0 comments

0 comments

borski1y ago

Sure. But most people add “111111” or “123456” to the end. That’s why it’s on top of every password list.

hunter2_OP1y ago

If cracking techniques catch the concatenation of those as suffixes to short undefined things, which I think many people would do at minimum, that would be worrisome indeed.

j / k navigate · click thread line to collapse