• SSTF@lemmy.world
    link
    fedilink
    arrow-up
    9
    ·
    5 months ago

    I’m not a security expert, so I’m sure someone can correct me, but it is my understanding that all the nonsense of adding numbers and special characters does nothing to increase security. Longer passwords increase security, even if they are all lowercase letters.

    So, “PaS$w3rD@” is a much less secure password than “sallyandbillywenttothestoreforsoda”

    • thenextguy@lemmy.world
      link
      fedilink
      arrow-up
      4
      ·
      5 months ago

      That’s 59 and 159 bits of entropy, respectively according to some random online password entropy calculator I found.

      Even better, just type out the whole sentence fully. Why disallow spaces?

      “Sally and Billy went to the store for soda”. 274 bits.

    • thanks_shakey_snake@lemmy.ca
      link
      fedilink
      arrow-up
      1
      ·
      5 months ago

      It’s not that it does NOTHING to improve security… An 8-character password with more options per character IS more complex (and in that sense, secure) than one with fewer.

      It’s just that adding more characters (e.g. in a passphrase, as per your example) also increases complexity, and is more usable.