• Extras
    link
    fedilink
    arrow-up
    11
    ·
    edit-2
    1 year ago

    Yeah knew a guy that used to work at a place where they had him change his password every 2 months or so kinda stupid. Entropy is really all you need to check. Also by special phrases do you mean salting peppering your passwords?

      • Extras
        link
        fedilink
        arrow-up
        8
        ·
        1 year ago

        The peppering passwords? That’s where you add a special word or phrase in all of your passwords but not in your password manager. It’s usually done in case your password manager becomes compromised thats why I got a bit confused with your statement, haha

    • boatswain@infosec.pub
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      Salting and peppering isn’t something you do; it’s something the site does prior to hashing your password and storing the hash.

      • Extras
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Yes you’re correct but what I was referring to was using an extra string of characters to protect against a compromised password manager

        Edit: Here’s a link to bitwarden’s website that further clarifies what I meant