Hacker News new | ask | show | jobs
by userbinator 700 days ago
Vary the password per site based on your own algorithm.
2 comments
jay_kyburz 700 days ago
AKA, put the name of the site in the password :)
link
Sohcahtoa82 699 days ago
"MyPasswordIsSecureDespiteNotBeingComplexBecauseItIsLong_BobsForum" is great until Bob's Forum gets hacked and it turns out that they were storing your password in plain text and your password of "MyPasswordIsSecureDespiteNotBeingComplexBecauseItIsLong_Google" becomes easily guessed.
link
zzo38computer 699 days ago
One way to mitigate such a problem is to use the hash of this text as the password, instead of using the text directly.
link
userbinator 700 days ago
Not necessarily, but just a pattern that only you would likely remember.
link
viraptor 700 days ago
You need a pattern that only you recognise/understand, not just remember. It takes only one leak of your password from service FooBar that looks like "f....b" to know what to try on other sites. Patterns easy to remember are mostly easy to understand.
link
ArnoVW 700 days ago
With LLM that sort of approach can be attacked at scale
link
tshaddox 700 days ago
That algorithm becomes analogous to the password to your password manager.
link