frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

the history of the human face

https://economist.com/culture/2026/07/09/the-history-of-the-human-face-is-more-than-skin-deep
2•andsoitis•8m ago•0 comments

The Work of Helping A.I. Destroy Work

https://www.nytimes.com/2026/07/10/business/ai-white-collar-jobs.html
1•thm•9m ago•0 comments

Show HN: Chameleon – shows Claude a real file from your repo before it edits

https://github.com/crisnahine/chameleon
1•crisnahine•10m ago•0 comments

Under federal rule, colleges must leave grads better off or lose financial aid

https://www.npr.org/2026/06/30/nx-s1-5835631/turner-camhi-do-no-harm-college-loans
4•nradov•15m ago•1 comments

A Captive Audience

https://seths.blog/2026/07/a-captive-audience/
2•herbertl•22m ago•0 comments

In defense of not understanding your codebase

https://www.seangoedecke.com/in-defense-of-not-understanding-your-codebase/
1•herbertl•22m ago•0 comments

Cloudflare Threatens to Cut Google Off from Their Publishers in Searches

https://www.nakedcapitalism.com/2026/07/cloudflare-threatens-to-cut-google-off-from-their-publish...
3•hackandthink•31m ago•0 comments

Show HN: Dgxtop: Rust Monitor for DGX or need to monitor GPU status

https://github.com/DennySORA/dgxtop
1•dennysora-main•32m ago•0 comments

Run Claude and Codex in the Browser [video]

https://www.youtube.com/watch?v=wgNbFRgQXwU
4•Ellis_dev•36m ago•2 comments

The Mind-Bending Company That Gets a Million Job Applications–and Rejects 99.9%

https://www.wsj.com/business/bending-spoons-jobs-hiring-stock-eaed2b8e
1•Stratoscope•38m ago•1 comments

Notion database based form builder

https://ndbforms.com/
2•nookeshkarri7•41m ago•0 comments

Martin van Creveld Interview

https://www.sonshi.com/martin-van-creveld-interview.html
1•fisheuler•41m ago•0 comments

The Entire History of Tetris Game Design

https://www.youtube.com/watch?v=mGuYUEuVDYc
1•euthymiclabs•47m ago•0 comments

Negotiating AI in Open Source Software Communities: A Case Study of LLVM Project

https://gupea.ub.gu.se/server/api/core/bitstreams/ad9b523e-f6d5-4dc2-b632-64f9734484cf/content
1•matt_d•50m ago•0 comments

What do you do when your to-do list gets out of hand?

https://www.taskloco.com/
2•taskloco_nyc•1h ago•1 comments

I built my DREAM New York City apartment from SCRATCH in 93 days [video]

https://www.youtube.com/watch?v=9hL4V3KFTKQ
1•tekacs•1h ago•0 comments

The Task Is Not the Unit of Work

https://sekoudoumbouya.com/blog/the-task-is-not-the-unit-of-work/
1•fakoli•1h ago•0 comments

Why the world is ordering buildings from China [video]

https://www.youtube.com/watch?v=qGqYaULHPV4
1•thelastgallon•1h ago•0 comments

Forward Deployed

https://andys.blog/forward-deployed/
1•andytratt•1h ago•0 comments

Why are US consumers so angry? It's not just high prices

https://www.theguardian.com/us-news/ng-interactive/2026/jun/04/us-consumer-rage-prices-economy
22•dilawar•1h ago•6 comments

Supernormal Stimulus

https://en.wikipedia.org/wiki/Supernormal_stimulus
1•thunderbong•1h ago•0 comments

TalkFitly – Practice high-EQ conversations with AI

https://apps.apple.com/us/app/talkfitly/id6776912365
1•sghick•1h ago•0 comments

Reducing HBM Bottlenecks in JAX-Based LLM Training with Host Offloading

https://developer.nvidia.com/blog/reducing-high-bandwidth-memory-bottlenecks-in-jax-based-llm-tra...
2•matt_d•1h ago•0 comments

Compiler Testing – Part 2: Metamorphic Testing with Verified Identities

https://nowarp.io/blog/compiler-testing-part-2/
2•matt_d•1h ago•0 comments

Martha Lillard, last US polio patient using iron lung, dies at 78 in Oklahoma

https://apnews.com/article/iron-lung-last-patient-died-polio-41e5b4da4f4e710344dd0872d7fcf987
2•gscott•1h ago•1 comments

OpenAI Engineer's 'LOL' Moment Set Stage for Legal Fight with Apple

https://www.bloomberg.com/news/articles/2026-07-11/openai-engineer-s-lol-moment-set-stage-for-leg...
3•sbulaev•1h ago•1 comments

All the Government's 385,837 frames of UFO files released thus far

https://hypergrid.systems/war.gov-ufo-viewer/microfilm5
1•keepamovin•1h ago•0 comments

Ukraine accuses Russia of creating conditions for the spread of anthrax

https://outbreaknewstoday.substack.com/p/ukraine-accuses-russia-of-creating
5•pinewurst•1h ago•2 comments

Don't You Mean Extinct?

https://fabiensanglard.net/extinct/index.html
1•markus_zhang•1h ago•0 comments

Survival guide: Key advice for what to do if you find yourself in a wildfire

https://www.euronews.com/my-europe/2026/07/10/survival-guide-key-advice-for-what-to-do-if-you-fin...
4•rawgabbit•1h ago•0 comments