Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It I still don't understand how this gained traction.

I memorize 3 passwords and they are extremely hard. The rest are not created by me and I don't have repeated passwords.



> I memorize 3 passwords and they are extremely hard.

Not everyone is a masochist. It doesn't matter whether you encode 128 bit entropy in a base95 string, or a list of ~8 random words, it's still 128 bit entropy… but the word list will be easier to memorize and to type out.


How many websites? How many passwords are you going to memorize and how are you going to not repeat a password?


> How many websites?

Zero. Why would I bother memorizing them?

> How many passwords are you going to memorize

The LUKS password for my home laptop, the LUKS password for my work laptop, logon passwords words for each, and password manager master passwords for each. I guess I could move some of these to hardware keys, but I'm too lazy.

> how are you going to not repeat a password?

The same anyone is not repeating passwords: Strong password generators.


> I memorize 3 passwords and they are extremely hard. The rest are not created by me and I don't have repeated passwords.

So why are you disagree with me?


Because XKCD-style passwords are as secure as your "hard" passwords, but much easier to memorize.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: