...take a phrase ie ilikepudding as an example
add some caps
IlikePuDDing
add some numbers
I8LikePuDDing8
Add some special symbols
I8Lik#PuDD!ng8
Throw in an alt code or 2
§╒ª◘
I8Lik#PuDD!ng8§
If you do all that you will be legit
add some caps
IlikePuDDing
add some numbers
I8LikePuDDing8
Add some special symbols
I8Lik#PuDD!ng8
Throw in an alt code or 2
§╒ª◘
I8Lik#PuDD!ng8§
If you do all that you will be legit
That's not secure. That would work for an online login, because it can limit the number of trials an attacker can make.
You should not use such for encryption of wallets!
A password like I8Lik#PuDD!ng8§ is not secure? You have got to be kidding. Steve Gibson's calculator at https://www.grc.com/%5Chaystack.htm gives the time to exhaustively search this password's space assuming one hundred billion guesses per second at 1.49 billion centuries.
How is a password like this not secure?
Steve Gibson's site says:
Quote
It is NOT a Password Strength Meter.
Somebody had a similar password on MtGox and was cracked:
Man, I seriously underestimated the power of GPU password crackers!
I had an 11-character password which I thought was pretty good--b1Ackb0x3!1, and that was cracked. I'm pretty sure I didn't succumb to any phishing attempts.
Good thing I use 20+ characters for passphrases.
http://forum.bitcoin.org/index.php?topic=23705.msg302468#msg302468I had an 11-character password which I thought was pretty good--b1Ackb0x3!1, and that was cracked. I'm pretty sure I didn't succumb to any phishing attempts.
Good thing I use 20+ characters for passphrases.