|
|
|
|
|
|
by tptacek
4678 days ago
|
|
|
I think it's important to pick a password that isn't in a list, or likely to be 1-2 transformations away from being in a list, and it's important to use a longer password, but apart from that it shouldn't matter as long as you use a different password for each service, and as long as the apps you use use bcrypt or some other real KDF. |
|
|
1. Required >7 character passwords
2. That don't appear on (constantly updating) lists
3. Using a reasonable KDF (b/scrypt)
Sound right?