John Hasler <j...@sugarbit.com> wrote on 20/03/2024 at 16:58:01+0100:
> Pierre-Elliott Bécue writes: >> A phrase you will easily remember but that would be hardcore to guess >> through social engineering is perfect. > > Better is a random string that you write down. When people try to > generate phrases that meet those requirements they usually fail. Writing down a password is a bad idea. Managing passwords through a password-store (eg pass, keepassxc, whatever tool you prever) is a great idea, but you first need to unlock your disk that hopefully you encrypted and then your session. And if your laptop is borken, then having a root password you actually can remember is better. Let's stop to overcomplexify, the best course of action for passwords you need to remember are passphrases, and to this matter, Randall nailed the matter properly. -- PEB
signature.asc
Description: PGP signature
