I understand, but I absolutely do not endorse. For the same reason as the XKCD comic correct horse battery staple is based on. It’s bullshit, it’s hard to remember (sometimes even hard to read or type in).
I just generated one & I tried to post a screenshot, but my Lemmy app isn’t cooperating…KeePass gives lots of options, very nice. The password randomly generated was “3vrCNHTTxFuMyhah”. Like…what the hell is that?? What??
Don’t get me wrong, I set up probably 30+ of those stupid things in my wayward youth. But if for some reason you have to type them in manually via Xbox controller, TV app, or otherwise…you’re going to be cussing yourself out like MAN this is SO STUPID, and it’s exponentially dumber because it’s something I did to myself. It’s not more secure. Make it easier, and also ironically more secure, doing it the right way.
Sure, I agree with you if it’s a password that I expect to have that use case (e.g. streaming service, home wifi network). Most of my passwords don’t though.
As a side note, assuming that they’re equivalent length I would argue that a random password is more secure than a passphrase (of equal length) composed of dictionary words because it’s more resistant to dictionary-based password cracking. That said, the point is moot. As xkcd has shown us, length is the main thing that matters. There’s effectively no difference in practice. I always tell people “the longer the better” in either case and I recommend passphrases for secrets that have to be memorized or typed.
That said, I think an acceptable medium would be to use a passphrase, like you’re suggesting, for a situation where entering it via a controller or remote is a legitimate use case. In fact, my password manager lets me pick and can generate passphrases or passwords. Not sure if that’s a feature in KeePass.
For the rest of the time when I don’t need the use case, I’ll simply generate a long random password using my password manager. It’s a faster workflow integrated into the tool itself and theoretically more secure against some attacks.
I understand, but I absolutely do not endorse. For the same reason as the XKCD comic correct horse battery staple is based on. It’s bullshit, it’s hard to remember (sometimes even hard to read or type in).
I just generated one & I tried to post a screenshot, but my Lemmy app isn’t cooperating…KeePass gives lots of options, very nice. The password randomly generated was “3vrCNHTTxFuMyhah”. Like…what the hell is that?? What??
Don’t get me wrong, I set up probably 30+ of those stupid things in my wayward youth. But if for some reason you have to type them in manually via Xbox controller, TV app, or otherwise…you’re going to be cussing yourself out like MAN this is SO STUPID, and it’s exponentially dumber because it’s something I did to myself. It’s not more secure. Make it easier, and also ironically more secure, doing it the right way.
Sure, I agree with you if it’s a password that I expect to have that use case (e.g. streaming service, home wifi network). Most of my passwords don’t though.
As a side note, assuming that they’re equivalent length I would argue that a random password is more secure than a passphrase (of equal length) composed of dictionary words because it’s more resistant to dictionary-based password cracking. That said, the point is moot. As xkcd has shown us, length is the main thing that matters. There’s effectively no difference in practice. I always tell people “the longer the better” in either case and I recommend passphrases for secrets that have to be memorized or typed.
That said, I think an acceptable medium would be to use a passphrase, like you’re suggesting, for a situation where entering it via a controller or remote is a legitimate use case. In fact, my password manager lets me pick and can generate passphrases or passwords. Not sure if that’s a feature in KeePass.
For the rest of the time when I don’t need the use case, I’ll simply generate a long random password using my password manager. It’s a faster workflow integrated into the tool itself and theoretically more secure against some attacks.