Need a password? Try the slashpass Human Readable Password Generator.
What password should I use?
A strong one for sure, depending on your requirements the answer may vary. Do you need to remember from memory? You will need to log in to your phone? You will need to share this password with someone else? How critical is the service you are protecting? are you using a password manager? For most of the use cases a human-readable password will make the work, and for critical things, and by using a password manager, go for a long and totally random generated password or company password generator.
Passphrase vs password
A passphrase is just a very long password composed of known words, at the end, the passphrases are (mathematically) equal secure than a shorter password with special characters, use your preferred, always than the passphrase is long enough.
Are password generators safe?
In theory yes, mainly because the generator will not know for which service you plan to use the password and for which username, however, cookies and fingerprinting are real, then you can be identified, as a personal practice, I use passwords generators but at the end merge two or three results to make my password.
How secure is an 8 characters password?
Barely, if you have an 8 characters password with letters, numbers, symbols, and capital letters, then you are fulfilling the minimum entropy to make your password hard to guess by brute force method, in general, longer passwords are recommended.
How secure is a password with special characters?
Between 5% and 10% most secure, depending on the complexity of the password before adding the special characters, in the extreme case of a password composed only by number then entropy could raise up to 40%, but this is only because the entropy of an only numbers password is extremely low.
Are password managers safe?
There is no easy answer, no system is completely secure and there are a lot of password managers out there, it is always a fight between security and convenience, in the maximum security level we have password managers likeKeepass andzx2c4 pass, and on the side of convenience we have password managers like1password andLastPass, in any case, a minimum requirement for any password manager is to use a zero-knowledge protocol, and it's best to have a password manager than not, also I have to mention,slashpassthe best commitment between security and convenience to share passwords and secrets between team members.
When password expires?
Is pretty common for the banks and other services to force us to cha https://ge our passwords after a time, in fact, this is an Anti-Pattern, according to onestudyof the University of North Carolina, 17% of new passwords could be guessed given the old one in at most 5 tries, and almost 50% in a few seconds of un-throttled guessing, then forcing the password expiration does not achieve the expected result besides of adding unnecessary overhead. Also use a company password generator to make sure your passwords are strong enough.
Where password are stored in Android?
Android OS has not a built-in password manager, however, some manufacturers like Samsung offers a solution like Samsung Pass with your devices, also is worth mentioning that Google Chrome (integrated into most Android phones) provide a manager,Settings > Passwords > Check passwords, is highly recommended to protect these passwords with a passphrase to make Google encrypt these passwords in the cloud.
How password protect excel documents?
Aside from the common use of the password for protecting our login in our email and different online services there are other common uses and it is to protect documents, this is useful to share documents in an office cloud where only a few people should have access to one document, the way this works is similar to zip files with passwords, behind the scene what Microsoft Office does is to encrypt our document, this ways makes impossible by any method to see the content, and even makes impossible of recovery it if you lose the password.
What password should I use for TikTok?
One from an extreme password generator, something familiar like your pet name plus some number probably is not a good idea, password in social networks like Facebook, Instagram, or TikTok are especially vulnerable to be guessed, not by brute force if not by mixing a dictionary of the things you likes more (easily obtainable by following you), then, for example for your dog Rocky a malicious attacker can try to guess your password with options like r0cky, Rocky2021, rocKy2009, #rock1, and thousand more like these, for social networks is particularly important increase the entropy, use a password generator or even a random word generator to make your password.
Why password policy is important?
The objective of a password policy is to establish minimum standards to prevent compromise of the company's entire network. There are different models out there, however, as a good model to follow, we can recommend theMicrosoft Password Guidancefrom the Microsoft Identity Protection Team, who it is very well-founded.
Which password manager is the best?
Depending on your requirements, different options can meet your needs, in Wikipedia is a list with the most popular, with the list of featureshttps://en.wikipedia.org/wiki/List_of_password_managersa safe option to recommend isKeePass, which is an Open Source password manager that does not depends on any third party, with the con that the security rely completely on you, being one of the most secure but also one of least convenient from the usability standpoint.
Which password manager is easiest to use?
When we talked about security matters the convenience and the security are always on opposite sides, that is because to achieve security we have to add intermediates layers between our natural behavior, some password managers implement solutions to make this process less painful, like adding browser extensions, mobile applications, or synchronization between devices, at the cost of security, even so, this securities cost is acceptable compared to not using a password manager, then to answer the question, in the convenience side I can recommend the popular password managers,1password,LastPass orDashlane, and for teams, slashpass is specialized designed to balance security and convenience to share secrets between team members.
Password can be easily guessed?
1qaz2wsx or 1q2w3e4r can be guessed instantly by any script that tries to break a login, also A1rPl4n3 is pretty easy to break in one hour or less by a powerful computer, we humans are pretty bad to know what is easy or not for a machine, then today is highly recommended to use password generators for new accounts, and they don't necessarily have to be difficult to read or write as long as they have acceptable entropy.
Password appeared in a data leak
Today are more than eleven billion accounts compromised, in more than 550 sites, to know if your account is compromisedhaveibeenpwned.comis an independent project who follow the data leaks and provide a service to check where and when your account has been compromised if so, also have a password section to check if you unencrypted password has been found on any of these leaks.
