[tuxone]

Right, thanks. So from 160 bits down to 70 bits of entropy (there is also fancy syllables and bad words to take into account).

[eviks]

Quite the opposite

> these new passwords have 71 bits of entropy, up from the 69 from the previous format.

[tuxone]

I am referring to the loss of entropy compared to a (theoretically) fully random 20-chars password.

[nneonneo]

Nit, 160 bits of entropy would be if you could get 8 bits per character, but that’s highly unrealistic. 6.0~6.3 bits is more feasible based on what most websites will tend to accept, which lands you at around 120-126 bits of entropy for a fully random password.