Due to a cockup on my part (shipping a partial password in a log file to a support request) I just had to reset my password asap. As it's a #password I need to use regularly (before I unlock my password manager), I use #Diceware to generate it. Unfortunately I couldn't find a single d6 in my room while I was running around like a headless chicken to reset it. So I've just generated a password using my giant foam novelty die. I'm *certain* it's not a truly fair die, but its definitely close enough for these purposes ;p

@thenewoil
I use #diceware random words and have never used as few as 3 so this doesn’t surprise me. The author advocates for using #passkeys but I have so far resisted that advice from him and others. Using a #password mgr with a browser extension, passkeys seem to be only a small increase in utility. Also don’t like the “black box” aspect of passkeys: what are they, where are they locally, how secure is this system. Happy to hear how I am wrong to be a passkey skeptic.

#Dice are cool.
#diceware

Perché la lista di parole italiane per #diceware inizia con una lunga lista di numeri e simboli? https://www.taringamberini.com/downloads/diceware_it_IT/lista-di-parole-diceware-in-italiano/4/word_list_diceware_it-IT-4.txt
Quella in inglese è di sole parole!

8,192 French #Diceware word list for use with computers.

#passwords #passphrases

https://theworld.com/~reinhold/wordlist_fr_8192.txt

I got a really funny diceware password recently, shame I can't tell anyone.

#diceware #passwordsecurity

Looks like Arnold Reinhold's home directory ~reinhold/ no longer exists on The World, even though the ISP is still online.

This means the #Diceware page is no longer accessible.

Anyone know what's going on?

#passwords

https://theworld.com/~reinhold/

I have a diceware program for the CLI. I usually use it to generate passwords. I sometimes use it to generate usernames. On this occasion, I asked it to come up with a two-word username and kept going until I found one I liked. It gave me “LukewarmPhoenix.” Now that one I like. But it’s too good for a username. Saving it for future reference. Who knew that diceware is actually an idea generator?

https://social.emucafe.org/naferrell/diceware-inspiration-lukewarm-phoenix/

#diceware

@mailbox_org Sorry Mailbox but after being your customer for 6 years I have to say something honestly and directly.

Your security understanding sucks!
You don't allow me to use TOTP, U2F with my own Yubikey.
And don't accept my 8 word bzillion bit #diceware password because it does not have special, capital letters and numbers.

This is not how you should be doing, not at the end of the 21st century's first quarter is about to end!

Passwörter.

Ein paar hoffentlich nachdenklich machende Anmerkungen zur Sicherheit von Passwörten... und dass sie ZUFÄLLIGE Zeichenfolgen sein müssen...
Erwähnte ich bereits, dass sichere Passwörter zufällige Zeichenfolgen sein müssen?

Nebst kleinerer Anmerkungen zu Passkeys und 2FA

https://www.borisstumpf.de/2024/07/passwoerter/

#2FA #Datensicherheit #Diceware #DicewareVerfahren #Passkeys #Passwörter #Passwortmanager

@Vivaldi

for good passwords:
https://xkcd.com/936/

https://theworld.com/~reinhold/diceware.html

#worldpasswordday #passwords #password #diceware #passwordmanager

Vor kurzem wurde das 2024 update zum hive systems password table veröffentlicht und wird gerade wieder viel geteilt.

Leider behandelt hive systems das Theme passphrases absolut inadequat, deswegen haben wir das zum Anlass genommen unsere passphrase Tabelle zu aktualisieren.

Details im Kommentar. ⬇️

#passwords #passphrases #security #passwordSecurity #passphraseSecurity #diceware

Did you know the #Diceware word list has the following words?

35413 kkk
35416 klan
35425 klux

#passwords

@lovinggrace change your passwords, everyone #diceware

Na, klasse. Es gibt zwei Regelsätze. 🤷🏼
1. Satz: Wenn schon #Diceware-System, dann mit Zeug reingepfuscht.
2. Satz: Diceware? Ha ha ha. Nein!
#PasswortRegeln #passwordRules

It’s time to generate some strong passphrases! #diceware

Debunking Cybersecurity Myths

Cybersecurity expert Eva Galperin — @evacide — helps debunk some common myths about cybersecurity.

☑️​ Is the government watching you through your computer camera?

☑️​ Does Google read all your Gmail?

☑️​ Does a strong password protect you from hackers?

☑️​ Will encryption keep my data safe?

☑️​ Are all hackers bad people?

Eva answers all these questions and much more using clear language that's easy to understand.

Eva Galperin is the Director of Cybersecurity at the Electronic Frontier Foundation — @eff

Rather read than listen? A helpful transcript is available.

https://www.wired.com/video/watch/expert-debunks-cybersecurity-myths

#Infosec #Cybersecurity #BeCyberSmart
#MoreThanAPassword #InfosecTraining
#DiceWare #Encryption #Passwords
#PasswordManagers #PublicWiFi #VPN
#EFF #ElectronicFrontierFoundation

This is as funny as it is depressing. I always recommend to use #DiceWare to create passwords, especially for admin accounts!! I have an earlier post where I discuss DiceWare so I won't go in to it here - but damn it admins! #BeBetter!

https://www.darkreading.com/application-security/the-most-popular-it-admin-password-is-totally-depressing

Is it REAL or is it FAKE?

Did you know that the skills you need to recognize a real word are completely different from the skills you use to recognize a fake word?

How well would you do? Which one of your word-recognition superpowers is naturally stronger?

The Center for Reading Research provides an online Word Test to measure:

➡️​ How large your vocabulary is.

➡️​ How well you can distinguish between a FAKE word and a REAL word.

With this test you get a valid estimate of your English vocabulary size within 4 minutes and you help scientific research by advancing word knowledge.

You can enter profile information about yourself if you like, or not enter any personal info.

These are the same folks at Ghent University in Belgium who conducted the readability research which led to major improvements in DiceWare. These improvements mean DiceWare is now ready for a larger audience, and could provide an "on ramp" to engage more members of the public in cybersecurity.

http://vocabulary.ugent.be/

#RealOrFake
#WordTest
#DiceWare