![]() We recommend selecting a minimum of six words from our long wordlist, or when using any other list of this size. Notes on Using the Different WordlistsĮFF's new long list, referenced in the directions above, is designed for memorability and passphrase strength. If you reuse a passphrase and it ends up being leaked in a data breach or otherwise discovered, it can be used to try to access your other accounts. ![]() Sometimes password databases or websites get compromised. Your passphrase should only be used for a single purpose, and especially should not be used for more than one online account. Other great uses are the passphrase for an encryption key (like your PGP or SSH key), or, especially, for unlocking a password safe or password manager application. The large number of possibilities makes it much harder for someone to crack even if they get ahold of your device and use encryption-cracking hardware. Your passphrase is especially suitable when directly used to encrypt information, like for full-disk encryption on your laptop or mobile device. This is not necessarily true for an online account, where the speed and quantity of guesses will be limited, but it could be true in other cases (for instance, if someone gets ahold of your device and is trying to crack its encryption password). That means short passwords of any kind, even totally random ones like nQ\m=8*x or !s7e
0 Comments
Leave a Reply. |