As was pointed out before, if your common password becomes known, it will be tried against every other place you may have an account. You don't just risk your TR account but every place that password is re-used.
It gets worse; "clever" is dead. Whatever clever "swap letters for numbers" or "letters taken from phrases" trick you use to create a memorable password - all those tricks are known and the dictionary files for them are already well known and used.
Complexity makes a difference but length is what really makes the difference. A truly randome 20+ letter/capital/number/lower/symbol is going to keep you good now and for a good while into the future.
"oh, but no one can remember one of those let alone a different one for every place" - get a password manager. Keepass, Lastpass.. get one, get comfortable using it. Your not remembering a 20 character password different for each website, you are remembering one strong long passphrase and the PW manager remembers and types the rest of your passwords for you.
Now you can have a different truly strong password for everything and with less effort than it takes to remember a few different shared passwords.
Discussion on:
Message 3 of 13
0
Votes
Because it's smarter, because it's too easy not to do
Posted by Neon Samurai
7th Nov
