Re: [PLUG] Correct Horse Battery Staple

K.S. Bhaskar via plug on 30 Apr 2022 14:59:32 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Correct Horse Battery Staple

From: "K.S. Bhaskar via plug" <plug@lists.phillylinux.org>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] Correct Horse Battery Staple
Date: Sat, 30 Apr 2022 17:59:15 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=E65XVmlNI0+YjhGkpDDCNuHeduh4y6sAi8hMfMOERK0=; b=D+01rBYDB7spTr3tC+rx4b89yITgMQOD4vw3WPMNcTS741X32J7fiE/VCjcgxy9ExZ FN1dhDpVx3+p0SeGKfF87A7jRPOaUeLvZfFHBGB/S1PcJ1i13Y4gTJnO+aLA2JH9bm3W DixrdK0E9LaLLyp1YRNKAikgFTdCLAJ0vEm/Ubr41CGvk9HMQheyew7+Y4tIW3T6SxBo u4ij5bx8Nt0MEHvFRMCg8ftIF6OOGMGYy7y3ONCQ4HgcrBBmzHM4Ho+Q580R5nJJO6bM DXbHC/uoKkFj82tVELFo7YcWx2sP3kudM6+0KlTdBwobCq1eBsodvKv8wy/iO1dSq6vG TUAg==
Reply-to: "K.S. Bhaskar" <ksbhaskar@gmail.com>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

Horse battery staple is a terrible idea. If you have to remember five random sequences of four words each, you can, but if you have to remember 20 (most people have logins for at least e-mail, social media, banking, etc.) it's questionable whether you can. Horse battery staple may be a good idea for a master password for a password manager, but that's it; certainly not for a bunch of accounts. Instead of random sequences of words, most people will end up using meaningful phrases like “Mikey's high school PTO” which have far less entropy.

I remember studies from way back when: while chess grandmasters can remember meaningful chess board positions far better than average people, when it comes to random chess board positions, they are no better than average people. It's the same thing with random phrases vs. meaningful phrases.

Regards

– Bhaskar

On Sat, Apr 30, 2022 at 2:04 PM JP Vossen via plug <plug@lists.phillylinux.org> wrote:

I may have talked about this before, but it came up at work Friday, so...

Go read https://xkcd.com/936/.

Then try:
`alias randomwords="shuf -n102 /usr/share/dict/words | perl -ne 'print qq(\u\$_);' | column"`

:-)
JP
-- -------------------------------------------------------------------
JP Vossen, CISSP | http://www.jpsdomain.org/ | http://bashcookbook.com/
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Correct Horse Battery Staple
  - From: Chris Thistlethwaite via plug <plug@lists.phillylinux.org>
- Re: [PLUG] Correct Horse Battery Staple
  - From: Rich Freeman via plug <plug@lists.phillylinux.org>
- Re: [PLUG] Correct Horse Battery Staple
  - From: Steve Litt via plug <plug@lists.phillylinux.org>
- Re: [PLUG] Correct Horse Battery Staple
  - From: brent timothy saner via plug <plug@lists.phillylinux.org>

References:
- [PLUG] Correct Horse Battery Staple
  - From: JP Vossen via plug <plug@lists.phillylinux.org>

Prev by Date: Re: [PLUG] Correct Horse Battery Staple
Next by Date: Re: [PLUG] Correct Horse Battery Staple
Previous by thread: Re: [PLUG] Correct Horse Battery Staple
Next by thread: Re: [PLUG] Correct Horse Battery Staple
Index(es):
- Date
- Thread