1. I'm super curious what your tweet said. I suppose it's gone forever now, no?
2. Re: password brute forcing: Do you have any idea for how long hackers actually try? If I have a pw that's hackable in 2 weeks, does the hacker give up by then? Their computing power is limited, right? So would it pay to keep going for 2 weeks with uncertain…
1. I'm super curious what your tweet said. I suppose it's gone forever now, no?
2. Re: password brute forcing: Do you have any idea for how long hackers actually try? If I have a pw that's hackable in 2 weeks, does the hacker give up by then? Their computing power is limited, right? So would it pay to keep going for 2 weeks with uncertain payoff, or go onto others with potentially shorter pw's? Also, the hacker has no idea that my it'll take 2 weeks. What if it's 2m years?! All things being equal, better computing power is bad for our pw safety b/c it lowers the cost of hacking. More computing power = more need for better pw's? Feeling safe with my sentence-long master pw and 40-character mixed pw's right now!
Screenshot of the tweet is here. Was a reply to a tweet about Putin going into negotiation without stopping shelling and basically offering nothing and asking for Ukraine to surrender:
On passwords, I'd turn on 2-factor auth everywhere you can and install an app like Authy on your phone. Much better. Passwords often leak and then attackers have a master list of passwords that they try on various sites, because people re-use passwords.
So say your password leaks from some crappy little site, but attackers can get into your Gmail because of it, and then they get banks to reset passwords to that Gmail and then have access to your bank, etc.
1. I'm super curious what your tweet said. I suppose it's gone forever now, no?
2. Re: password brute forcing: Do you have any idea for how long hackers actually try? If I have a pw that's hackable in 2 weeks, does the hacker give up by then? Their computing power is limited, right? So would it pay to keep going for 2 weeks with uncertain payoff, or go onto others with potentially shorter pw's? Also, the hacker has no idea that my it'll take 2 weeks. What if it's 2m years?! All things being equal, better computing power is bad for our pw safety b/c it lowers the cost of hacking. More computing power = more need for better pw's? Feeling safe with my sentence-long master pw and 40-character mixed pw's right now!
Screenshot of the tweet is here. Was a reply to a tweet about Putin going into negotiation without stopping shelling and basically offering nothing and asking for Ukraine to surrender:
https://twitter.com/borrowed_ideas/status/1499100862639222785
On passwords, I'd turn on 2-factor auth everywhere you can and install an app like Authy on your phone. Much better. Passwords often leak and then attackers have a master list of passwords that they try on various sites, because people re-use passwords.
So say your password leaks from some crappy little site, but attackers can get into your Gmail because of it, and then they get banks to reset passwords to that Gmail and then have access to your bank, etc.
I think it was kicking that dog that got you sent to the slammer.
I use Keeper. On master and different pw's for everything, usually 40-characters with symbols, etc.
Twitter can't do anything about propaganda troll farms and scammers and spammers, but they sure banned me quickly.. ¯\_(ツ)_/¯