frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Grammar Has Eigenvalues (and Your Brain Measures Them)

https://github.com/degibug-del/spectral-grammar
1•degibug•2m ago•0 comments

PixLab WebGL/WASM Video Editor

https://video.pixlab.io/
1•symisc_devel•7m ago•0 comments

LG Spyware TVs

https://www.youtube.com/watch?v=Q9uefFYe6bM
1•rythmshifter•8m ago•0 comments

Google Ordered to Give A.I. Rivals More Access on Android Smartphones

https://www.nytimes.com/2026/07/16/technology/google-android-ai.html
2•1vuio0pswjnm7•10m ago•0 comments

Computational design generates a spinning drone that's nearly transpare

https://spectrum.ieee.org/invisible-spinning-drone
1•testingonetwo34•10m ago•0 comments

Gain trust from AI generated code again with semantics constract

https://bfzhao.substack.com/p/beyond-vibe-coding-rebuilding-the
1•bingfeng•12m ago•0 comments

What 10 autonomous film crews taught us about agent teamwork

https://cloud.google.com/blog/topics/developers-practitioners/what-we-learned-about-agent-teamwork
1•richards•14m ago•0 comments

Pebble Mega Update – July 2026

https://repebble.com/blog/pebble-mega-update-july-2026
2•crazysaem•18m ago•0 comments

People in Many Countries Now View China More Positively Than the U.S.

https://www.pewresearch.org/global/2026/07/15/people-in-many-countries-now-view-china-more-positi...
2•giuliomagnifico•20m ago•1 comments

Mac OS interface one shotted by Kimi 3

https://macos27.kimi.page/
3•handfuloflight•20m ago•4 comments

How Has Roman Concrete Lasted for Millennia? 1,900-Year-Old Latrine Offers Clues

https://www.smithsonianmag.com/smart-news/how-has-roman-concrete-lasted-for-millennia-a-1900-year...
2•divbzero•23m ago•0 comments

Every junior portfolio I screen now is incredible, and it means nothing

https://old.reddit.com/r/cscareerquestions/comments/1uy5m4u/every_junior_portfolio_i_screen_now_i...
1•bundie•28m ago•0 comments

AI Assistant Needs a Back End. Put It at the Edge

https://lowlatencyclub.ai/blog/posts/edge-ai-assistant-backend-go
1•sona-coffee11•29m ago•0 comments

AI Censorship Tested Across India, China, US, and Europe

https://www.reddit.com/r/AIDiscussion/s/MxOxble1Kd
4•omrajguru•32m ago•0 comments

Things you didn't know about indexes

https://jon.chrt.dev/2026/04/15/things-you-didnt-know-about-indexes.html
1•thunderbong•33m ago•0 comments

All the Beautiful Art in This Video Game Was Hand-Drawn by One Person(2020)

https://www.vice.com/en/article/all-the-beautiful-art-in-this-video-game-was-hand-drawn-by-one-pe...
2•iamanatom•34m ago•0 comments

Superdesign Prompt Library

https://superdesign.dev/library
1•handfuloflight•39m ago•0 comments

NASA's Roman Telescope vs. Webb: the telescope that will map a billion galaxies

https://dotient.com/blog/nancy-grace-roman-space-telescope
2•localdeclan•42m ago•0 comments

Warren Buffett Initiates Berkshire Hathaway's Investment in Alphabet

https://www.cnbc.com/2026/07/15/warren-buffett-tells-cnbc-he-initiated-berkshire-hathaways-invest...
2•mgh2•43m ago•0 comments

What We Talk About When We Talk About Bruce Lee

https://decodingvibes.com/blog/what-we-talk-about-when-we-talk-about-bruce-lee/
1•altmanaltman•43m ago•0 comments

Netflix plateauing engagement, stock drops after Q3 revenue falls short

https://finance.yahoo.com/markets/stocks/article/netflix-stock-drops-after-q3-revenue-falls-short...
1•mgh2•47m ago•1 comments

How to report copying review data under Copyright to google

https://www.google.com/
1•nsinghal12•52m ago•0 comments

AI's real bottleneck is data delivery

https://techcrunch.com/sponsor/f5/your-gpus-arent-the-problem-ais-real-bottleneck-is-data-delivery/
2•adithyaharish•55m ago•0 comments

Gradle Technologies is now Develocity

https://develocity.ai/blog/gradle-technologies-is-now-develocity/
1•mccullal8•59m ago•0 comments

Streaming Encryption (2014)

https://www.imperialviolet.org/2014/06/27/streamingencryption.html
1•nivethan•1h ago•0 comments

Asbestos is a tool, just like any other

https://www.osnews.com/story/145530/asbestos-is-a-tool-just-like-any-other/
2•amcclure•1h ago•0 comments

Samsung is testing a network permission toggle feature

https://www.androidauthority.com/samsung-one-ui-9-concentration-feature-3666807/
2•vilasa•1h ago•0 comments

Router ARP/NAT contradict after reload. Client ghost or firmware bug?

2•asdem•1h ago•0 comments

Preempt AI v2 – AI is powerful. Make sure it's safe too

https://www.getpreempt.com/
1•karthikravva•1h ago•0 comments

Barefoot shoes are trendy after years of mockery. Do they work?

https://slate.com/life/2026/07/barefoot-shoes-minimalist-toe-running-sneakers-xero-vibram.html
6•littlexsparkee•1h ago•3 comments