Blog post: Your xkcd passwords are pwned -
Reading: 12 min
Published: 12/04/2019

@wi1lson I'm too lazy to fire up hashcat, but if you're using scrypt then I think XKCD passwords are still secure. Even with password managers, one still needs to remember passwords (for example, the master password for the password manager), and if one's using scrypt, then one might be able to get away with 4-word XKCD passwords.

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.