Passwords are necessary evils. The way most password-based authentication works these days, the length and complexity of your password is directly related to how difficult it would be for an attacker to impersonate you. For example, if you choose "password" as your password, an attacker will usually guess this on his second try (his first try would probably be an empty string). Even if you were to use a six-character randomly generated password like 2=w\Z9, the entropy would be less than 40 bits, meaning it would take less than 240 guesses to discover the password in a brute-force attack.
|
