frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Claude Wrapped

https://www.theverge.com/ai-artificial-intelligence/963105/anthropic-claude-wrapped-reflection-ai...
1•Brajeshwar•19s ago•0 comments

A software defect in Telstra timekeeping servers took down emergency calls

https://www.theregister.com/networks/2026/07/08/telstra-outage-downs-000-calls-trains-payment-sys...
1•logickkk1•24s ago•0 comments

A Roadmap to Finding, Onboarding, and Training a Virtual Assistant

https://tavlinconsulting.gumroad.com/l/mental-load
1•mooreds•35s ago•0 comments

Parents' Phone Addiction Affects Bond with Kids, New Study Finds

https://www.bloomberg.com/news/articles/2026-07-08/parents-phone-addiction-affects-bond-with-kids...
1•bishopsmother•1m ago•0 comments

Multiple Double Arithmetic on Nvidia Tensor Cores

https://arxiv.org/abs/2607.06881
1•Jimmc414•2m ago•0 comments

AI Mistakes Can Cost Doctors Time When Writing to Patients

https://home.dartmouth.edu/news/2026/07/ai-mistakes-can-cost-doctors-time-when-writing-patients
2•cdrnsf•2m ago•0 comments

Formally Verifying AI-Generated GPU Kernels

https://gimletlabs.ai/blog/formally-verifying-ai-generated-kernels
1•nserrino•2m ago•0 comments

Puerto Rico Grid Recovery: Limited Progress Toward Stability

https://www.gao.gov/products/gao-26-107772
1•Jimmc414•2m ago•0 comments

Show HN: Zero2Robot – A free, from-scratch course on how robots learn

https://zero2robot.com/
1•kaushikbokka•2m ago•0 comments

Design a distributed unique id generator

https://blog.danwald.me/design-a-distributed-unique-id-generator
1•danwald•2m ago•0 comments

Ask HN: How do you share agent context across a team?

1•snowhy•4m ago•1 comments

Show HN: Devthropology – Better Insights for GitHub Repos

https://devthropology.com/app/r/zv8C
3•dpc94•5m ago•0 comments

Mechanized type inference for record concatenation

https://haskellforall.com/2026/07/mechanized-type-inference-for-record-concatenation
1•birdculture•5m ago•0 comments

Poll: How much do you personally spend for LLM subscriptions each month?

1•ThePhysicist•5m ago•0 comments

Entrepreneurs Capture the In-Between

https://blog.dannycastonguay.com/entrepreneurs-capture-the-in-between/
1•seanXSL•5m ago•0 comments

Everyone's Watching the Wrong Benchmark

https://gradientvc.substack.com/p/everyones-watching-the-wrong-benchmark
1•ayewo•5m ago•0 comments

Model Bloat: naming the pattern behind rising AI costs

https://dev.to/modelbloat/model-bloat-naming-the-thing-everyones-alredy-complaining-about-5bpa
1•ModelBloat•5m ago•0 comments

Laravel Cloud Private Cloud

https://laravel.com/cloud/private-cloud
5•jbrooksuk•6m ago•0 comments

How microVMs work, by building one in the browser

https://builders.cortex.io/blog/sandboxing-agents-part-1/
7•nikhilunni•7m ago•0 comments

Ben Bernanke Appointed to Anthropic's Long-Term Benefit Trust

https://www.anthropic.com/news/ben-bernanke
1•surprisetalk•7m ago•0 comments

Ask HN: Does anyone let AI agents play games just for fun?

1•nodivbyzero•10m ago•0 comments

Show HN: Atomic AST hot-reloads and local Datalog in Rust to audit AI commits

https://github.com/lambda-alpha-labs/Graphenium
1•Graphenium•10m ago•0 comments

The Next Chapter for ChatGPT

https://www.youtube.com/watch?v=Wq45rvPGNHs
3•mrcwinn•10m ago•0 comments

Nvidia announces 14 new GeForce cards, but none of them have a GPU

https://videocardz.com/newz/nvidia-announces-14-new-geforce-cards-but-none-of-them-have-a-gpu
1•TheJCDenton•10m ago•0 comments

OpenAI GPT-5.6 livestream today at 10am PT

https://openai.com/live/
4•j-b•11m ago•2 comments

Show HN: I made my Mac moan every time someone pays me:D

https://www.slapmetrics.com
2•launchpact_io•13m ago•0 comments

The Problem with Google's A.I. Overview

https://www.nytimes.com/2026/07/08/opinion/ai-google-gemini-search-questions.html
1•amatheus•14m ago•0 comments

Is a literary mag connected to the killing of a head of state?

https://www.discordiareview.com/p/sigrid-rausing-granta-ai-swedish-assassination
1•theanonymousone•16m ago•1 comments

Eden was the first containment failure

https://tidesofsea.com/eden-first-containment-failure
3•_phnd_•16m ago•0 comments

Show HN: A source-linked product research page

https://www.bettascore.ai
1•tsxng44•16m ago•0 comments