We should all use 17 character passwords, right?

This is deceiving, any web based system worth its weight will cut off any user after X (10-20) attempts.

This would apply to local desktops/laptops but again that usually requires physical access unless you screwed up and left SSH or something accessible.

Color - object - number - lyrics/phrase. Default template.

Example GreenFrog1776Donttreadonme

I'm in 1 hour territory. I'll update my passwords to 24 years strength. If a hacker is dedicated enough to go for that, they've earned it.

Relevant xkcd strip: https://xkcd.com/936/

Hint: if you happen to know several languages like I do, mix the languages thus forcing hackers to lose even more time using many dictionaries.

The consensus among the experts now is that length trumps complexity. So a sentence from a children's book is harder than a shorter password with all the characters from the lower right of this chart.

Also, Do not use a password manager cloud service.

11tn years, I’m safe 😄👍

Interesting.

This was one of my passwords:

öÓ;î}¡LñìòÃ9×[XÈFÆcÖ8ÒF@nB¸Õ8iNýý?Ó~©Kw\[ÞV1Öâç©æßåÞ@uø½4V% ¯ø%ÏJÏÏËW$fs(²)¯{ù*@x¿v!Hþà_Éù7ÿ·RØxómÖÕ

I reset it today because it's now weak.

I'm good for the next 500 trillion years.

Also, how many important systems use two factor auth today?