undefined | Better HN

0 pointskeithnoizu14y ago0 comments

This is not entirely correct, we include non alphanumeric characters (punctuation) in our passwords occasionally because it increases the solution space for a brute force attack.

   While this doesn't really improve any individual password the fact that we occasionally include non alphanumeric charecters increases the possible password set from 62 possible charecters ^ password length to a something more like 90^password length.  

  Similarly we dictionary attacks are more efficient than brute force attacks because we're talking maybe 200,000^(words in password) if we allow for some common word permutations versus 90^passwordlength.

0 comments

3 comments · 1 top-level

kragen14y ago· 2 in thread

You seem to believe that you are saying something different from the comment you are replying to, but actually you seem to simply not understand it.

keithnoizuOP14y ago

are you kidding, i'm pointing out the historical reasons for why we add punctuation chars in our passwords, as it directly impacts the solution space a brute force attack needs to cover.

kragen14y ago

No, I'm not kidding. And the comment you were replying to already explained that.

j / k navigate · click thread line to collapse