frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

The CIA's Family Jewels (2007)

https://nsarchive2.gwu.edu/NSAEBB/NSAEBB222/index.htm
1•robtherobber•1m ago•0 comments

Societal Impacts: Claude's values across models and languages

https://www.anthropic.com/research/claude-values-models-languages
1•taubek•1m ago•0 comments

Cyber Resilience Act

https://digital-strategy.ec.europa.eu/en/policies/cyber-resilience-act
2•Rygian•4m ago•0 comments

Anthropic's state-by-state plan to ratchet up AI rules

https://www.politico.com/news/2026/07/15/inside-anthropics-state-by-state-plan-to-ratchet-up-ai-r...
1•JumpCrisscross•6m ago•0 comments

Show HN: PromptMan: A native macOS app for saving and reusing AI prompts

https://promptman.app/
1•Karym09•7m ago•0 comments

Never procrastinate again. Stick to TaskLoco super smart sticky notes

https://www.taskloco.com/
1•taskloco_nyc•7m ago•0 comments

FOSDEM 2026: Multi-relay msging & cryptographic identities w/ DeltaChat/Chatmail

https://fosdem.org/2026/schedule/event/3F9VTU-deltachat-chatmail-relays-multi-transport/
2•xeonmc•9m ago•0 comments

ChatGPT Subagents 2

1•217•9m ago•0 comments

Show HN: AI-CLI – tiny C terminal assistant powered by local LLM

https://github.com/vkataev/ai-cli
1•novaRom•12m ago•0 comments

Show HN: RazerStream – Reviving the Orphaned Razer Stream Controller on macOS

https://github.com/ShoelessTim/RazerStream
1•ShoelessTim•12m ago•0 comments

Add a waitlist form without a back end

https://lanes.sh/use-cases/waitlist-form-without-a-backend
4•s-xyz•13m ago•0 comments

Festo: Bionic Learning Network

https://www.festo.com/de/en/e/about-festo/research-and-development/bionic-learning-network-id_31842
1•iamanatom•13m ago•0 comments

Bionic flying objects – Future concepts from the Bionic Learning Network

https://www.festo.com/de/en/e/about-festo/research-and-development/bionic-learning-network/bionic...
1•iamanatom•14m ago•0 comments

How Agentic Is Agentic Commerce? Measuring X402 Adoption and Authenticity

https://arxiv.org/abs/2607.12575
1•sbulaev•18m ago•0 comments

One Tactical Unlock at a Time: How Tesla Built Powerwall

https://coleashman.substack.com/p/one-tactical-unlock-at-a-time-how
1•shafyy•22m ago•0 comments

After record heat, could the Atlantic make Britain's weather more extreme?

https://www.bbc.co.uk/news/articles/c992e8g10nmo
1•ljf•22m ago•0 comments

German startup offers solar awnings

https://www.pv-magazine.com/2026/07/14/german-startup-offers-solar-awnings/
1•DamonHD•24m ago•0 comments

Low Resource Computing 2026

https://lrc.cs.dartmouth.edu/
1•christoph-heiss•25m ago•0 comments

A Beginner's Guide to the True Order of SQL Operations

https://blog.jooq.org/a-beginners-guide-to-the-true-order-of-sql-operations/
2•rzk•29m ago•0 comments

IdeaPanda: Find business ideas worth building

https://www.getideapanda.com
2•welsenesbros•29m ago•1 comments

Show HN: SeaTicket – AI-powered issue management platform

2•Daniel-Pan•29m ago•1 comments

Making My Rust Program Space-Flight Ready

https://w4g1.dev/blog/making-my-rust-program-space-flight-ready
4•hruvhwe•30m ago•0 comments

Build an AI Phone Story Hotline – Interactive Storytelling with Telnyx Voice AI

https://lowlatencyclub.ai/blog/posts/ai-phone-story-hotline-python
1•harpreetseehra•32m ago•0 comments

Unjica

https://unjica.com
1•unjica•34m ago•0 comments

Understanding Map of Content (MOC) in Zettelkasten

https://publish.obsidian.md/johndray/020+Zettelkasten/Understanding+Map+of+Content+(MOC)+in+Zette...
1•ankitg12•35m ago•0 comments

Boss – Dependency Manager for Delphi and Lazarus

https://github.com/HashLoad/boss
2•TheWiggles•40m ago•0 comments

Image Converter/Compressor

https://filelite.app
1•gintokinx•44m ago•0 comments

Show HN: Modern Robotics Registry – mapping the new robotics ecosystem

https://roboticsregistry.net
1•make_it_sure•46m ago•1 comments

DSLs Enable Reliable Use of LLMs

https://martinfowler.com/articles/llm-and-dsls.html
2•SirOibaf•47m ago•0 comments

America stands on the shoulders of Soviet engineers

https://write.as/cxgd70ai1rc57
1•garn810•49m ago•1 comments