I love your advice. I worked with computers for 35 years. I've had strong passwords for 30 years on some accounts. I've never had a problem.

Thank you sir! Brief, yet straight to the point 👍🏾

Ideally you would use all 8 bits in each character byte for a total of 255 combinations. In reality due to the limitations of the English keyboard, it only allows about 94 unique characters, including lower, upper, and special characters. As long as you're using random characters of at least 30 characters long, it's impossible to crack it using current computer technology which of course may chance in the future. There are several methods of cracking passwords. First, by trying different combinations on a login page. Unless you can guess it within a few tries, this method is futile due to the failed attempts and timeout lockout. Basically you get locked out after a few tries unless guessed correctly. Second, is where the attacker has the hashed password file stolen, and simply runs an unlimited number of brute force attempts till it's guessed correctly. If you have used most of the 94 characters on the keyboard with at least 30 random characters, this method will fail too (at least for now). Third, is by social engineering where an attacker tries to obtain the login/password by fooling the user via a phishing text or email, or hacking the password reset email, thus gaining access to the target account.

We have come a long way way multifactor authentication. Loved the sentence part. Thought I’ve seen no spaces as a rule? Combo keys would be excellent.

The reality is, if you're logging in all the time you will remember a complex password. Mine makes use of phrases, numbers, special characters, and so on. All memorised.

brief but great. Link to the documents you referred to?

Security questions should have nonsensical answers. Q. "What is your favorite dessert?" A. "floorboard"

Realy clear explanation . Imagine you my uncle i can deep learn from you for free 😅

Thanks for this nice presentation... All best

I wish we lived in a world where passwords aren't even needed, that nobody would try to hack someone's computer in the first place. I hate crooks and thieves.

This drives me crazy, because I was happy with my original passwords and was forced by websites to change them. All of this made sense to me then, but you can’t reason with a stupid website.

Thanks for the update.

Take any old book you have, open it at random, take any line and your password is the first letter of every word in that line. Just remember the page and line.

I totally agree with what he says. Thanks.

i've been using quotes from 1 of my favourite movie characters for years, with a number and special character at the end. lots of length, easy to remember. just fucking annoying when you have to type it on a phone

Can you please send us an example of strong Password

I prefer passwordless logins. It is much harder for everyone other than the intended account owner to log in to accounts as shoulder surfers cannot see anyone typing a password. Given people’s terrible password choices, passkeys are preferred using biometrics like a face and fingerprint.

Thanks!

More secure from brute forcing, what about social engineering? what will happen when quantum computer already used commercially?

Because remembering passwords are the only thing you need to remember in your life.

Replace passwords with public keys already

Secret questions are fine. Just answer the question nonsensically. Then it isn't useful to the threat. "What is your favorite color?": Suzuki Vitara

SSO

My password is 77 characters long & easy to remember 😂

Make passwords more secure by ,lenthening them ,and never use a fingerprint ,because ita saved as a key public key ,yeag ,make the passwoed a sentence long ,and never show charachters while ur typing ,neverrrr

Long passphrase that is very easy to remember?? Oh, you mean like lyrics. :D

I always give out my nameday as my birth date

My password is 12345. I use it on my luggage.

We are mere puppets

Just use a mathematical formula

Yes but users dont set the rules so mostly useless advice.

correcthorsebatterystaple

There were hundreds of email sent from my email account between 30 Aug to 1 Sept to many hotmail and outlook addresses with sECURED.shtml attachment of 764KB. Some emails were not delivered and deleted from my inbox automatically. How can I track who did this or which program/app is doing this? Is my email compromised?