Topic: Are 1000-random-character passwords good enough to be the same for all accounts? (Read 526 times)
December 21, 2016, 11:28:50 AM
If you use them on all your accounts then that's a problem still. One account gets compromised everything goes down.
December 21, 2016, 11:23:12 AM
It is good enough for all accounts. But what if you lost all the back up of your password? You cannot memorize all of it and later it will be a reason for the lost of your accounts.
December 21, 2016, 10:40:35 AM
No, it's a bad security practice. Get a password manager such as 1Password, or Lastpass, and just keep generating different passwords for each website.
December 21, 2016, 10:11:56 AM
brute force is not the only way to get passwords
keyloggers and sites vulnerabilities may expose your password, and a 1 million letters password would make no difference
so it is not a good idea
keyloggers and sites vulnerabilities may expose your password, and a 1 million letters password would make no difference
so it is not a good idea
December 21, 2016, 09:36:50 AM
The whole point of not reusing passwords is that if one site leaks your password, it doesn't matter how good your password is. Hackers are just as good as you are at copy-pasting your long password into every site they can think of. 
This! You should use a unique password for every site to remain secure. If a site is compromised or has a malicious administrator, someone could obtain your password and simply try it at other sites that you frequent. I usually recommend using a secure password manager with a strong master password to store unique passwords for the sites you are registered on.
December 21, 2016, 02:30:48 AM
Nope.. it would be bad.
All it takes is one site you go to that gets compromised.
A site may have your password stored in plain text then they have your ass hard !
Don't do that !
Check out Password Depot if you are on Windows or other password manager programs.
PD has a built in password creator too.
Oh and most have a limit of 8 or 12 or 24 chars etc.
All it takes is one site you go to that gets compromised.
A site may have your password stored in plain text then they have your ass hard !
Don't do that !
Check out Password Depot if you are on Windows or other password manager programs.
PD has a built in password creator too.
Oh and most have a limit of 8 or 12 or 24 chars etc.
December 20, 2016, 09:21:04 PM
The whole point of not reusing passwords is that if one site leaks your password, it doesn't matter how good your password is. Hackers are just as good as you are at copy-pasting your long password into every site they can think of.
December 20, 2016, 05:10:57 PM
as much as I know it can be brute forced but it would take time since it's a long one also if someone gets this password by some way he will know basiclly for all your accounts since youre using it for all.
December 20, 2016, 04:24:13 PM
Lose the flash drive and lose all your accounts? All your eggs in one basket?
Centralization, we don't support that here.
Centralization, we don't support that here.
December 20, 2016, 04:16:01 PM
On my flash drive, actually. The purpose of this is to plug in the flash drive whenever you are asked for your password. And whenever you create a new account, a new 1000-character key is generated for each account and saved on the drive. This idea is only in concept stage.
December 20, 2016, 04:13:29 PM
Where are you going to save this password? On your computer, phone, etc.? What if your house burns down and you can't save your computer, phone, etc.? Now all of you accounts are lost too?
December 20, 2016, 04:10:02 PM
Because re-using the same password always is such a great idea, right?
December 20, 2016, 04:07:16 PM
Apparently Twitter and Facebook do, and so do Microsoft.
December 20, 2016, 04:01:03 PM
Paranoid much?
I agree that many sites would not be able to deal with that.
I agree that many sites would not be able to deal with that.
December 20, 2016, 03:58:58 PM
are you planning on memorizing that? i'm gonna guess not in which case you may as well have some more 1000 character passwords. i'm not sure many sites could handle ones of that size.
December 20, 2016, 03:51:57 PM
Think of passwords like this:
Would this be stable enough to be the same for all accounts?
Code:
*wnGb$*#WcbJPIw6L!qp3J5gWt%lprQd8q9*@KMnZJj(PFgF7*mPhZ&cEkfX!SKOfQq_5qpJ)QhN&4NI*Es_FSzlew_pCDlgINhx$)B7X)D6zK1Pay5Cg!D8*MAPqV4bmf)VwU8SdQKpC1C%Xe_F(bBMiQAL8u9n47R&9uVvGIBECi!KWLi5K_GbOR#BSB9N2xGwJ0RGgMQP2HQxoSQZ8^eDwg$YJv8H5vQ4@^qp#2Cq)Tp7+HvPT(5gRzEXeiki*14Z!@DYQ3%pHn!b@0UsT5W4MQI8sYlbWR*I4)j_Od0ud5ThyDP*hc6l2Dls_jAnMFfmETeNAEg@uWbHMc1iZ7_TInt_FlXY8)JVvAN8kE400nh+9()F8C66sL0b@bHyqb&SB54KVrN9)g&dkn9NvFB7Ix!f+zEzGc2m5qN_DYMVl@rdT)dC5Ns7T7o2Dk*IzNtPbRxuuj7Y9XG&2Mg!4LHe7Cp)2NCHKSUK%89T6(V5b9Z1i6lP9rMjKsghll5zrujC3#13%!NK4_^BY25lHodw@+2ZGUaXd7r4%JvQk+IjLKEGi241Q9vxKEldS1PMDQwQ7Dj&@hpkzVfQX%^yP!UQ1Zk1_3)hEZbVqPdG#JmBWJ!jUgOvQIc4dVW@gzDVAvCfvI!poCDMUKmK5nCKvB@%6S4NOEFkv@5mEmvJgS3i&RwSnN9G26!w8KWjwX@%Mf&%MMP(RDF42nhDCi2iSS*!E7_C_jEuhwr_yzv$RVTG(smIR9Kh(TqHR!lYPKNPBRNojqNBLUj!ZIlHbZKY6GDV@bP)mZU6Yo$8bii#fsX%!%A*8os^xwj34*W3lT191uX4iF1+LT(sZ$(5yUUH4ncfK1OpX4Os2sK$EJdY4V!rr3STO!7_4hDAtoYq*N6PT(yt@Ay8D$2(15ny3npiEhQvG(B*N64N9MRzXufq8(O!0+LCoLqd&n@Ix2RBgAxI70RHfQFHhtO_Ww^@t0YS%Uus$LAOW2g*)m4iOUSW
Would this be stable enough to be the same for all accounts?
Jump to: