• konju376@lemmy.blahaj.zone
    link
    fedilink
    arrow-up
    9
    ·
    11 months ago

    Sure they are different, but if somehow someone finds out just one password of yours, all others are broken too, right?

    • Kalkaline @leminal.space
      link
      fedilink
      arrow-up
      5
      ·
      11 months ago

      Right, there shouldn’t be an easy to decipher password rule. Random passphrases seem to make the strongest passwords these days, especially if symbols, numbers, and spaces are allowed and used. Even the strongest password should have 2FA, and even that is only as strong as the identity verification of the password/2FA reset process.

    • Barbarian@sh.itjust.works
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      11 months ago

      Depends on the implementation of different login services and the number of possible permutations. An attacker will probably get locked out of trying to log in after making dozens of guesses.

    • sudoshakes@reddthat.com
      link
      fedilink
      arrow-up
      1
      ·
      11 months ago

      You don’t partially decrypt passwords. You either get the full thing or you get gobble.

      So if they get 1, they still don’t know you use <DiscordTag> or <Disco> or <DiscordSeevice> etc. I wouldn’t just straight up say “Netflix” in my service tagging.