frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Domain Expiry Grace Period: ICANN Rules, Redemption Period and What It Costs

https://medium.com/@thesuperrepemail/domain-expiry-grace-period-icann-rules-redemption-period-wha...
1•mssblogs•3m ago•0 comments

Prism World-The Workers.try for Free

https://prism-world.pages.dev
2•rrrpro123•5m ago•1 comments

The page of only weblogs (1999 – 2002)

http://www.jjg.net/retired/portal/tpoowl.html
1•theanonymousone•5m ago•0 comments

Cockpit Color Guide

https://www.cybermodeler.com/color/cockpit.shtml
1•theletterf•6m ago•0 comments

Paca v0.9.0: Automation Workflows – let Paca hand off tasks for you

https://github.com/Paca-AI/paca/discussions/268
1•pikann22•7m ago•1 comments

EU threatens Meta with fines over 'addictive' Facebook and Instagram

https://www.bbc.com/news/articles/c8j2dje3pldo
2•breve•7m ago•0 comments

Revenue is just an agreement between friends

https://www.larp.website/
1•bryanrasmussen•8m ago•1 comments

RFID Case Study: Uniqlo Global Stores Applied RFID Tags

https://huayuansh.com/uniqlo-global-stores-applied-rfid-tags/
1•thunderbong•15m ago•0 comments

Make Europe Cool Again

https://jacek.migdal.pl/2026/07/07/make-europe-cool-again
2•matesz•22m ago•0 comments

MCP-customs – NPM audit, but for MCP servers (offline, zero telemetry)

https://github.com/mcpcustoms/mcp-customs
1•mcpcustoms•27m ago•1 comments

High-performance Go to TypeScript transpiler

https://github.com/s4wave/goscript
1•aperturecjs•28m ago•0 comments

MCP server for Hyperliquid trading perps

https://github.com/Dakkshin/hyperliquid-mcp
1•Dakkshin•33m ago•0 comments

A CIRCT (Circuit IR Compilers and Tools) Project Tutorial

https://samuelcoward.co.uk/blog/2026/demo/
1•matt_d•35m ago•0 comments

9lives – Self-healing test runner that refuses to mask real bugs (

https://github.com/Quality-Max/9lives
1•ruslan_qm•36m ago•1 comments

Inside HackerRank's LLM-based Hiring Agent

https://blog.grandimam.com/posts/how-hacker-rank-scores-engineers/
1•grandimam•36m ago•0 comments

LazyCamHUD – daily video logs with a sci‑fi HUD, like in The Martian

https://github.com/hieuha/LazyCamHUD
1•hieuha•38m ago•0 comments

Learned helplessness at fifty: Insights from neuroscience

https://pubmed.ncbi.nlm.nih.gov/27337390/
3•JumpCrisscross•42m ago•0 comments

Rate Limiting for a Hosting Product

https://www.contentstack.com/blog/tech-talk/the-invisible-shield-how-contentstack-launch-protects...
3•sidcool•43m ago•0 comments

Ryanair passenger partially sucked out of window on flight from Greece

https://www.reuters.com/business/ryanair-plane-makes-emergency-landing-greece-after-window-dislod...
2•skibz•46m ago•0 comments

We Are Officially Beginning the Process to Convene Grand Juries over DOGE

https://cmarmitage.substack.com/p/we-are-officially-beginning-the-process
2•JumpCrisscross•49m ago•0 comments

Reflect Orbital: The Sunlight Company

https://www.reflectorbital.com
2•mparramon•49m ago•0 comments

Wall Street's booming $1T 'synthetic risk transfer' phenomenon

https://www.ft.com/content/d91d35fc-93ab-4963-8587-7a00fe5c63b4
1•JumpCrisscross•52m ago•0 comments

Competitive Programming in the Era of AI

https://www.vibhaas.net/posts/Competitive-Programming-in-the-era-of-AI/
1•m-novikov•55m ago•0 comments

GPT 5.6 Ultra better in Claude Code than in Codex?

https://twitter.com/theo/status/2075776733626892542
2•rstagi•58m ago•1 comments

8 Stages of AI engineering maturity: a framework for teams

https://upsun.com/blog/8-stages-ai-engineering-maturity/
1•cribwi•1h ago•0 comments

How AI is rewiring childhood

https://www.economist.com/leaders/2025/12/04/how-ai-is-rewiring-childhood
1•pretext•1h ago•0 comments

Weak hands and blurry vision: Is your tech giving you 'phone body'?

https://www.bbc.com/future/article/20260630-is-your-tech-giving-you-phone-body
2•breve•1h ago•0 comments

AlkaLean ReviEwS (2026): We Tried It My Honest Review

https://gamma.app/embed/AlkaLean-ReviEwS-2026-We-Tried-It-My-Honest-Review-xfitipfhzgxwhbd
1•wakyfarx•1h ago•0 comments

From Architecture to 3D Editor: My Shift from Design to Programming

https://alexsyniakov.com/2026/07/11/programs-not-objects-how-i-stopped-designing-architecture-and...
1•birdculture•1h ago•0 comments

Why is Starlink so big?

https://www.fool.com/investing/2026/06/29/spacex-secret-launch-subsidy-makes-starlink-profit/
3•sawyers•1h ago•4 comments