Almost every time I visit a gaming forum I see some poor bloke with their account hacked. Most likely it was pilfered by the same culprits that attach Steam, Xbox and other game platforms. Its now so bad I see posts daily.

Here at the site the the administration account is protected with a 512-bit class password. The server cannot be access from outside as the firewall blocks access but again it also is secured with a 512-bit password.

By using brutal passwords is the only way to keep miscreants from entering the site and causing all kinds of problems. WordPress has been hardened as well to prevent miscreants from doing any damage.

While 512-but would qualify for FIPS top secret easily. The goal is simply to keep bad actors away.

Even a 128-bit password is strong. Some places want even more complicated fields for the password.

char* ascii = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
char* symbols = "~!@#$%^&*()<>{}[]";

The ASCSII character set has 26 lower case letter, 26 upper case letter and 10 digits. That provides 62 possible symbols per password character. Using the ASCII characters about 27 symbols will make a 128-bit secure password.

Adding the ASCII symbols does improve the entropy per symbol. This would allow about 22 symbols to reach 128-bit.

A human readable and memoizable password is much harder especially for those who do not have an IQ of 160. There are some ways to get a strong password, create a list of 3 or 4 words such as animals or plants etc. The use one word, add 2 numbers. Then add a second word and add 2 numbers. In this way a very strong password can be assembled and remembered.

By using a good unique password is the only way to be sure your secure. Heed the warnings of leaked databases of sites you use.

%d bloggers like this: