On Mon, 04 Feb 2019 11:17:13 +0000, Mick wrote:

> > https://xkcd.com/936/  
> 
> Not strictly true ... the crackers would probably use rainbow tables
> attacks first.  Also, it isn't fair to compare an 11 character passwd
> against a 25 character passwd.  For the *same* number of characters
> used in any given passwd, a random lower/upper/numerical/symbol passwd
> will provide an exponentially higher degree of difficulty in cracking
> it with brute force, than one which uses only lower case dictionary
> words.  Anyway, these days many attacks are focused on OS or hardware
> vulnerabilities which have been baked in by design, rather than brute
> force attacks.

I'm not sure xkcd is meant to be taken that seriously...


-- 
Neil Bothwick

Help a man when he is in trouble and he will remember you when he is in
trouble again