memes

10383 readers

2764 users here now

Community rules

1. Be civil

No trolling, bigotry or other insulting / annoying behaviour

2. No politics

This is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent reposts

Check for reposts when posting a meme, you can only repost after 1 month

4. No bots

No bots without the express approval of the mods or the admins

5. No Spam/Ads

No advertisements or spam. This is an instance rule and the only way to live.

Sister communities

!tenforward@lemmy.world : Star Trek memes, chat and shitposts
!lemmyshitpost@lemmy.world : Lemmy Shitposts, anything and everything goes.
!linuxmemes@lemmy.world : Linux themed memes
!comicstrips@lemmy.world : for those who love comic stories.

founded 1 year ago

MODERATORS

Tenthrow@lemmy.world

The_Picard_Maneuver@lemmy.world

The_Picard_Maneuver@startrek.website

1307

It's a cruel system (lemmy.world)

submitted 1 day ago by return2ozma@lemmy.world to c/memes@lemmy.world

121 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] mitchty@lemmy.sdf.org 1 points 20 hours ago (1 children)

Sure just if fully given in this way it’s basically the same as an 11 character password. And more damning is it’s not really random. I’d use this as a case of more education on longer passphrases aren’t always longer entropy on their own if they are non random phrases is all. And there’s a lot of different word lists out there. I’d give this a go on my system and see if a guided run with the knowledge of how things were built can brute force it.

The big thing is a secure passphrase or password should be resistant to attacks even if there is perfect knowledge of how it was generated. In this case all lower case English words in a non random phrase works against that.

[–] RecluseRamble@lemmy.dbzer0.com 2 points 17 hours ago* (last edited 17 hours ago) (1 children)

Sure just if fully given in this way it’s basically the same as an 11 character password.

Only of the attacker knows whether it's a password or phrase. I'd argue that passwords are far more common and that's what a cracker would focus on first.

should be resistant to attacks even if there is perfect knowledge of how it was generated

As far as I know there still is no way to create actual randomness. You'll still have some pseudo-random number generator and a hopefully unguessable seed. If you have "perfect knowledge" about that, cracking the password is almost trivial.

[–] Gremour@lemmy.world 2 points 14 hours ago

Morden computers have hardware that generates entropy. It is used for cryptography.

Also, when creating password for yourself, you can use a simple physical dice, it's truly random.