Re: bustabit.com -- The Social Gambling Game (formerly moneypot.com)
From now on, users will no longer be able to pick their own password. The site is going to generate you something nice and secure, which you can write down.
No matter how much I tried, users kept reusing passwords and it was a never-ending war trying to prevent accounts being hacked (there's sites like leakedsource which have millions of peoples reused passwords).
Old passwords are still valid, although I'd encourage everyone who didn't use a password manager to randomly generate one to change it.
I apologize in advance about the inconvenience, and if you're prone to losing your password please make sure to set a recovery email.
No matter how much I tried, users kept reusing passwords and it was a never-ending war trying to prevent accounts being hacked (there's sites like leakedsource which have millions of peoples reused passwords).
Old passwords are still valid, although I'd encourage everyone who didn't use a password manager to randomly generate one to change it.
I apologize in advance about the inconvenience, and if you're prone to losing your password please make sure to set a recovery email.
It's generated client side so more advanced users can still pick their own :-)
I suggest you make the client side generator 4 English words from this wordlist: https://github.com/bitcoin/bips/blob/master/bip-0039/english.txt
It will be a similar amount of entropy as your generator (~44bits along with reCAPTCHA) but much easier to remember and write down.
http://preshing.com/20110811/xkcd-password-generator/
Edit:
You can even get by on just 3 words (33bits) since this will be 8.5 billion combinations. Cost to solve 1000 google reCAPTCHAs ~ $0.80 cents. And no one has $6 million USD in their bustabit account to be targeted.