I want to ask what is the dangerous of creating a seed phrase that generate 3 words only + passphrase (strong password 18 characters)? Is it safe? Is it possible to lose the funds this way? If yes, how?
The idea is, people just need to memorise 3 words + passphrase (of their choice) (strong password) rather than worrying that the (seed phrase 12 or 24 words) is stolen or lost. Any reason why this cannot be practical or recommended?
I understand that seed phrase can easily be guessed by a hacker but then he needs to be able to crack the 18 characters (combination of lower, upper case, number, special characters such as * ? >< !@#}|_-&^%$)
Honestly password strength is a trivial matter that only becomes a major playing factor in hacking when the person has an in-depth idea of who you are. Like even "statistically weak passwords" like Iloveyou or password has got some strength to them when you add numbers and punctuation marks, so as long as you don't put yourself out there and don't go out of your own way to give the people a general notion of who you are or how you think, you should be safe even with this 3 seed phrase plus password combo.
I'd argue that this is even safer than having us memorize or take note of a 12 word seed phrase, since this you can remember by heart without having to put it someplace else, only to misplace it if it's a paper wallet or send it to someone accidentally if you've kept your seed phrases on a text file like I always do. There's some personalization in it that is going to be a tough nut to crack without the use of advanced tools.
Out of all security options the 12 seed phrase is still king, but if it means I risk losing my wallet as well when I forget the seed phrase combination and the exact words I'd choose a "less safer" but more accessible option all day.