Hacker News new | ask | show | jobs
by SanderNL 1098 days ago
I think creating a strong password and offering it once is better or am I overlooking something?
2 comments
BoxFour 1098 days ago
If you suggest making one powerful password and using it everywhere, then as soon as one website reveals your password all your accounts have been exposed. The usual practice is to remember one strong phrase and never use it for anything except your password keeper.
link
SanderNL 1098 days ago
I mean if the website in questions generates a password and shows it (and then lets it go of course). This is used to show cert private keys for example. I can see it work with passwords.

I don’t care about passwords. I just want a “key” and I’ll store it.

link
BoxFour 1098 days ago
Seems reasonable.
link
robertlagrant 1098 days ago
Offering it once? Offering what?
link
SanderNL 1098 days ago
The password, at account creation. Here is your password: ……

I have seen it being used for cert keys.

link
robertlagrant 1097 days ago
Oh I see - the system generates the user a password? Yeah; makes sense.
link