The worst passwords of 2023 are also the most common, “123456” comes in first::undefined

  • lol@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    24
    arrow-down
    1
    ·
    1 year ago

    Brute force also doesn’t necessarily mean brute forcing each character. If the password consists of relatively few dictionary words like this, it could be brute forced in a matter of minutes (depending on computation power, hash function used etc. of course).

    • JohnEdwa@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      7
      ·
      edit-2
      1 year ago

      OTOH passphrases are so rarely used that other than a handful of common examples that would already be in a word list such as CorrectHorseBatteryStaple, it would be rather unlikely for anyone to bother even trying unless they are specifically trying to crack a specific password.

      So maybe don’t use a plain four word english passphrase as the admin login, but if your facebook password is ZuckerbergSucksFlaccidCock, 'tis probably fine.