Comment on Passkeys might really kill passwords
blackbirdbiryani@lemmy.world 9 months agoOnly if you’re specifically targeted. I know enough regex to know that nobody is going to bother trying to parse known passwords to identify patterns like that when there’s a billion suckers who use ‘password123’ for their bank accounts.
As long as the pattern is not super predictable, and aren’t dictionary words, nobody is brute forcing that.
These would be extremely easy to detect with regex. Just look for the service name in a password, including common keep speak conversion.
Password123-Facebook then easily becomes Password123-GitHub or Password123-Walgreens.
I can assure you, if I was a bad actor that got my hands on a password dump, I’m checking for these kinds of passwords pretty early on.
subtext@lemmy.world 9 months ago
Even a minute mental load at everything you need to log into in a day is still more than the zero mental load I have when using a password manager.
It’s not just more secure, it’s far more convenient. Plus once you start to share a life with someone, you can share all your accounts and passwords effortlessly as well.