Wait, it's 2022 and TechRepublic is recommending that people generate their passwords on someone else's website? Who's editing this stuff?! #infosec #fail https://www.techrepublic.com/article/how-to-generate-secure-passwords-for-your-accounts/
@nw Putting the dictionary in dictionary attack... also make sure to hire a password inspector to tell you if you have chosen a good password.
@nw In most cases those are entirely generated client-side in JS.
The problem is non-programmers can't really verify that, but if you *are* sure, it's safe.
@mdhughes Exactly.
@nw why tho, it's not even something that's difficult to code.
🇪🇺
Imagine a website that ask the URL you want a password for, and the username you will use. Knowing that, we can generate a very strong password for you.
But that's not all. We put its hash in the blockchain too, associated to a NFT that *you* possess. This way, no one would be allowed to use your password. Best security *ever*!
I'd better start to code this site before anyone steal my idea. 😂
@nw "If you don't have a password manager..." then bloody get one. 🤦
@nw business model: Give us your data & email & TelNr & bank data & Insurance no. ... We will calculate the optimal password for you and that will be the only correct and secure one that you will use everywhere 🙃
Oops that will be quite a funny grav that you can market.
@nw tr -dc "[:graph:]" < /dev/urandom | head -c 50
@nw Well ... that's disappointing.