• ReginaPhalange@lemmy.world
    link
    fedilink
    English
    arrow-up
    28
    arrow-down
    2
    ·
    9 months ago

    Why do people humble brag about their password strength, but then tell the whole world how to construct rainbow tables designed to crack their passwords?

    • InnerScientist@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      ·
      9 months ago

      Iirc rainbow tables are currently useless due to good seasoning salt.

      Though password crackers can take a known pattern to drastically increase speed it would still have to do the whole calculation for every password.

    • viking@infosec.pub
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      9 months ago

      Like I mentioned, I’m using a related pattern, nothing as simple as the one I sketched out here.

      • LostXOR@kbin.social
        link
        fedilink
        arrow-up
        1
        ·
        9 months ago

        As long as the other 18 characters are randomly generated that seems secure enough, and a decent way to keep track of which passwords are associated with which accounts.

        • LordKitsuna@lemmy.world
          link
          fedilink
          English
          arrow-up
          9
          ·
          9 months ago

          Feels like just a roundabout an exceptionally more difficult way to achieve a strong password versus just a password manager. Where you can do ridiculous things like have a 100 character long password

          Only to discover that the website will accept 100 characters in the box but actually truncate it to like 40 without telling you