Amicitas@lemmy.world to Technology@lemmy.worldEnglish · 23 days agoNIST proposes barring some of the most nonsensical password rulesarstechnica.comexternal-linkmessage-square176fedilinkarrow-up1541arrow-down14file-textcross-posted to: cybersecurity@sh.itjust.workstechnology@lemmit.onlinecybersecurity@sh.itjust.works
arrow-up1537arrow-down1external-linkNIST proposes barring some of the most nonsensical password rulesarstechnica.comAmicitas@lemmy.world to Technology@lemmy.worldEnglish · 23 days agomessage-square176fedilinkfile-textcross-posted to: cybersecurity@sh.itjust.workstechnology@lemmit.onlinecybersecurity@sh.itjust.works
minus-squaresugar_in_your_tea@sh.itjust.workslinkfedilinkEnglisharrow-up1·edit-222 days agoI usually do 256 characters. That’s long enough that most password managers top out anyway (mine tops out at 128), and it shouldn’t ever present a DOS risk. Anything much beyond that and you’ll go beyond the hash length.
I usually do 256 characters. That’s long enough that most password managers top out anyway (mine tops out at 128), and it shouldn’t ever present a DOS risk. Anything much beyond that and you’ll go beyond the hash length.