frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

AI can now control Reaper DAW

https://github.com/xDarkzx/Reaper-MCP/tree/main/reaper_mcp/tools
2•DanHodgetts•2m ago•1 comments

Show HN: Senbonzakura – remove the safety guardrails from open AI models

https://github.com/elementmerc/senbonzakura
2•ElementMerc•2m ago•0 comments

M-PESA cornered the market in Kenya (2024)

https://www.wbs.ac.uk/news/how-mpesa-cornered-the-market/
2•zeristor•3m ago•0 comments

Using AI to build your own software

https://lemire.me/blog/2026/07/16/using-ai-to-build-your-own-software/
1•ingve•4m ago•0 comments

Show HN: I applied for a position at PostHog, so I built a game

https://www.alexis-fournier.com/hognarok/
1•alxfrnr•5m ago•0 comments

Principia Artificialis Open mathematical research program onthe theory of AI

https://github.com/holland202/Principia-Artificialis
1•badatchess•6m ago•0 comments

SpaceX scrubs Starship launch after some of its engines didn't start

https://arstechnica.com/space/2026/07/spacex-scrubs-starship-launch-after-some-of-its-engines-did...
2•rbanffy•10m ago•0 comments

Tell HN: AWS said I was projected to spend $5B this month on my personal account

2•throwaway_5753•12m ago•0 comments

Which IELTS writing scorer is more accurate? A test on 73 official responses

https://ieltswritingchecker.org/blog/ielts-writing-checker-accuracy-study
1•iamin•13m ago•0 comments

AxiomProver at IMO 2026 (perfect score)

https://github.com/AxiomMath/IMO2026
1•chaoxu•14m ago•0 comments

Compliant-Mechanism Mattress for Preventing Pressure Ulcers – First Prototype [video]

https://www.youtube.com/watch?v=KfIB_e_6rzY&list=PLWeErkRyxkhJLAOiogjiNLPDU5KPlRVwm
1•o4c•16m ago•0 comments

Representations of Power and Rarity (2026)

https://icely.neocities.org/articles/representations-of-power-and-rarity
1•icely•16m ago•0 comments

Show HN: Monocoque – ZMTP 3.1 (ZeroMQ) messaging library in pure Rust

https://github.com/vorjdux/monocoque
1•vorjdux•18m ago•0 comments

Show HN: Prompts for Self-Help

https://plastithink.com/
1•andsko•19m ago•0 comments

Nvidia Showcases Japanese AI Development Built on Nemotron Models

https://www.hpcwire.com/off-the-wire/nvidia-showcases-japanese-ai-development-built-on-nemotron-m...
1•rbanffy•20m ago•0 comments

End of Line: Replacing MCP with Standard Filesystem Tools

https://www.sicpers.info/2026/07/end-of-line-replacing-mcp-with-standard-filesystem-tools/
1•ingve•21m ago•0 comments

New Viking music Odin´s eye

https://open.spotify.com/track/5HvBJ2KBGetjlIeMJiJq8b
1•mrhappypappy•21m ago•0 comments

Porous material harvests water from the air and enable energy-efficient cooling

https://www.uni-kiel.de/en/university/details/news/kieler-material-gewinnt-trinkwasser-aus-luft-u...
1•geox•23m ago•0 comments

I Owe My Life to the Commodore 64

https://www.goto10retro.com/p/i-owe-my-life-to-the-commodore-64
4•ingve•23m ago•0 comments

AWS: Inaccurate Estimated Billing Data - $1.7 BILLION

6•nprateem•26m ago•7 comments

Ask HN: What are your plans for the Future?

3•aneesharasannan•26m ago•2 comments

AWS Investigating Inaccurate Billing Data

https://twitter.com/AWSSupport/status/2078037531036172430
8•andystanton•26m ago•6 comments

Harica: Issuance of Server TLS Certs with ClientAuth KeyPurposeID Against CP/CPS

https://bugzilla.mozilla.org/show_bug.cgi?id=2055551
1•Animux•28m ago•0 comments

An Assessment of How AI Models Protect Free Expression

https://www.oversightboard.com/news/are-llms-stifling-political-speech-an-assessment-of-how-ai-mo...
2•huhkerrf•32m ago•0 comments

World models can now read your mind! All you have to do is connect your data

https://reactor.onairos.io/daydream
1•BlasianHokage•35m ago•0 comments

SREs to AI Agents: Prove Yourself Before You Touch Production

https://www.nextplatform.com/control/2026/07/15/sres-to-ai-agents-prove-yourself-before-you-touch...
2•rbanffy•36m ago•0 comments

Mu – APIs for Agents

https://micro.mu/developers/
1•asim•38m ago•0 comments

Scanning for Pangram Errors

https://veryfineprint.substack.com/p/scanning-for-pangram-errors
1•jsnell•38m ago•0 comments

Ask HN: Do you say please and thank you to your LLMs?

5•healthworker•40m ago•9 comments

Where is your GitHub network building from?

1•ThierryRkt•42m ago•0 comments