frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Feds demand autonomous vehicle companies stop interfering with first responders

https://techcrunch.com/2026/07/08/feds-demand-autonomous-vehicle-companies-stop-interfering-with-...
1•rilan•5m ago•0 comments

Neuromorphic Silicon Neuron Controller for Deep Brain Stimulation in Parkinsons

https://arxiv.org/abs/2607.05453
1•Jimmc414•8m ago•0 comments

I fact-checked 15 stats from a 1.2M-subscriber creator against primary sources

https://hemantpatil.substack.com/p/i-fact-checked-15-stats-from-a-12m
1•HPatil7•13m ago•1 comments

How to Kill the Bloat in Claude Code's System Prompt

https://www.aihero.dev/how-to-kill-the-bloat-in-claude-codes-system-prompt
1•Garbage•14m ago•0 comments

How to come up with a passion project

https://greatlittle.software/blog/how-to-come-up-with-a-passion-project/
1•Garbage•15m ago•0 comments

Invisible Companies: Why Overlooked Businesses Win

https://colossus.com/article/invisible-companies/
1•Garbage•16m ago•0 comments

Reproducing an Indirect Prompt Injection Against a RAG Pipeline

https://koreshield.ai/blog/reproducing-indirect-prompt-injection-rag
1•uncleteslim•18m ago•0 comments

Benchmarking quantum advantage: Quantum Advantage Tracker

https://quantum-advantage-tracker.github.io/
1•Alien1Being•18m ago•1 comments

'Humanizer' tool can erase signs of AI-written text

https://www.nature.com/articles/d41586-026-02105-3
2•gnabgib•23m ago•0 comments

I Built the Ωmega Agent

https://omegas.dev
2•LivingGlitcher•24m ago•1 comments

NPM 12 makes install scripts, Git, and remote-url dependencies opt-in by default

https://github.blog/changelog/2026-07-08-npm-install-time-security-and-gat-bypass2fa-deprecation/
2•slymax•31m ago•0 comments

Cancer cases worldwide are expected to soar in the coming decades

https://www.washingtonpost.com/health/2026/07/08/why-who-is-warning-about-escalating-cancer-rates...
2•brandonb•31m ago•0 comments

Waymo Calls Police on Teenage Riders Who Were Drinking

https://www.roadandtrack.com/news/a71866405/waymo-robotaxi-calls-police-on-teenage-passengers-dri...
3•kerim-ca•35m ago•1 comments

Top Legal Adviser to Joint Chiefs Is Stepping Down a Year Before Completing Term

https://www.propublica.org/article/eric-widmar-retiring-joint-chiefs-legal-adviser
4•Jimmc414•36m ago•0 comments

Practical Lessons from Reinforcement Learning Post Training Experiments [pdf]

https://zenodo.org/records/21115798
2•luvverma2011•37m ago•0 comments

China Cuts 12,200 University Programs, Replaces Many with AI Degrees

https://www.forbes.com/sites/annaesakismith/2026/06/23/china-cuts-12200-university-programs-repla...
3•happy-go-lucky•43m ago•0 comments

Non-tech background, choosing between using CLaudeCode and CodeX

2•virtuallymundo•44m ago•2 comments

Texans deserve more then a Ken Paxton snake game

https://paxtonsnake.3d2k.com/
2•KilledByAPixel•45m ago•1 comments

Show HN: Figment – An AI that I made my friends talk to for 2 weeks

https://figment.computer/
2•subby•48m ago•0 comments

Burner Email, Temp email Box lasting 24 hours

https://burneremail24.com/
2•texasjosh•48m ago•0 comments

Llama 2 LLM on DOS (2025)

https://yeokhengmeng.com/2025/04/llama2-llm-on-dos/
2•userbinator•48m ago•0 comments

Rutazo – Argentina's freight marketplace, built solo in 4 months

https://www.rutazo.com
2•cookinat•48m ago•0 comments

Citicorp Center Engineering Crisis

https://en.wikipedia.org/wiki/Citicorp_Center_engineering_crisis
3•thunderbong•50m ago•1 comments

What's slowing down the AI buildout

https://www.worksinprogress.news/p/ai-is-bottlenecked-by-the-grid
2•droidjj•53m ago•0 comments

Researchers uncover possible cause of muscle pain from cholesterol medication

https://medicalxpress.com/news/2026-07-uncover-muscle-pain-widely-cholesterol.html
3•brandonb•56m ago•0 comments

Show HN: Free and OSS way to extend client-facing functionality of Linear

https://linear.gratis/
2•gvlachos•59m ago•0 comments

AI could keep poor countries poor

https://newsletter.deenamousa.com/p/ai-could-keep-poor-countries-poor
3•zaik•59m ago•0 comments

Morph Chess

https://www.david-duval.com/morph-chess/
2•dvduval•1h ago•1 comments

Looksmaxxing influencer who fled police found dead

https://thetab.com/2026/07/08/looksmaxxing-influencer-who-fled-police-found-dead-after-swimming-n...
2•andsoitis•1h ago•0 comments

Character AI Alternative for Roleplay

https://chatbrat.ai/bratlog/best-character-ai-alternatives-2026
2•henrypissler•1h ago•0 comments