Reply to post: Re: Sigh

It's World (Terrible) Password (Advice) Day!

Charles 9 Silver badge

Re: Sigh

"It’s 23 characters long (which is the single most significant hindrance to cracking it), contains a combination of alphanumerics and ‘special’ characters (punctuation), is unique to you, becomes a simple matter of muscle memory recall in a short time and is less demanding cognitively, because all that actually need be remembered for each site/service is the unique (and short) extension (which the site/service you are using will remind you of), can’t be cracked by a brute force dictionary attack in any language."

Until you get the sites mixed up and use the wrong extension for the wrong site. Plus, if a malware attacker cracks one site and gets your password, they can start getting clued in to your system. Two hits to the same base make it much more likely to be found out, at which point the extension is the only thing they need to figure out.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019