undefined | Better HN

0 pointsdav-12y ago0 comments

I'm using Lastpass. I usually generate 48 char passwords.

0 comments

Isn't that overkill though? It's not like they're practically (as opposed to theoritically) better than 16 char passwords.

Who can force break 16 char passwords (especially with non-alphanumeric chars in)?

dav-OP12y ago

Realistically, I'm not worried about someone brute forcing my password for some one-off site. On the other hand, there's really no technical reason to limit passwords to anything less than 255 characters, so why do it? What if some technological breakthrough enables us to build processors much more powerful than previously thought possible, processors that can easily brute force a 16 character password? Likely? No. Possible? I have no clue, but I'd rather not gamble on it.

j / k navigate · click thread line to collapse

0 comments

coldtea12y ago

Isn't that overkill though? It's not like they're practically (as opposed to theoritically) better than 16 char passwords.

Who can force break 16 char passwords (especially with non-alphanumeric chars in)?

dav-OP12y ago

j / k navigate · click thread line to collapse