frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Uber Announces Acquisition Offer for Delivery Hero

https://investor.uber.com/news-events/news/press-release-details/2026/Uber-Announces-Acquisition-...
1•adletbalzhanov•33s ago•0 comments

BYO NOS: Building a maintainable, SRE-friendly switch

https://blog.rezero.org/byo-nos
1•mrngm•1m ago•0 comments

The AI Backlash Has Tech Executives Fearing for Their Lives

https://www.wsj.com/us-news/the-ai-backlash-has-tech-executives-fearing-for-their-lives-30c43972
1•justswim•2m ago•0 comments

India reached Mars on its first try with a mission that cost less than a film

https://spacedaily.com/t-india-mars-first-attempt-low-cost-mangalyaan/
1•rmason•2m ago•0 comments

GPT 5.6 Solves all IMO 2026 questions with no human steering [pdf]

https://github.com/SignalPilot-Labs/AutoFyn/blob/production/results/imo-2026/pdfs/IMO_performance...
2•kenjackson•2m ago•1 comments

Enterprise Haskell at H-E-B

https://blog.haskell.org/enterprise-haskell-at-h-e-b/
1•cosmic_quanta•3m ago•0 comments

Responding to AI Distillation Without Panic

https://www.lawfaremedia.org/article/responding-to-ai-distillation-without-panic
1•EA-3167•4m ago•0 comments

Bank of AI

https://docs.bankofai.io/
1•2a0c40•4m ago•0 comments

JEP 401: Value Objects (Preview)

https://openjdk.org/jeps/401
1•lichtenberger•5m ago•0 comments

Companies turn to Chinese AI models to cut costs

https://www.ft.com/content/9c8ff45b-7c20-4c2e-93c9-c52339ffdcee
2•bookofjoe•5m ago•1 comments

Netflix says around 300 titles used generative AI

https://www.theverge.com/streaming/966633/netflix-ai-titles-q2-2026-earnings
1•rarisma•7m ago•0 comments

Scaling to 1M concurrent sandboxes in seconds

https://modal.com/blog/scaling-to-1-million-concurrent-sandboxes-in-seconds
5•thundergolfer•8m ago•1 comments

America's Russia sanctions bill hits 60 co-sponsors

https://www.axios.com/2026/07/16/russia-sanctions-bill-lindsey-graham-senate
1•MilnerRoute•8m ago•0 comments

Splitting Large SwiftUl Views in the Apple's Way

https://emredegirmenci.substack.com/p/splitting-large-swiftui-views-in
1•emredegirmenci•9m ago•0 comments

Claude Code's system prompts, extracted and tracked across 237 versions

https://github.com/Piebald-AI/claude-code-system-prompts
2•opwizardx•12m ago•0 comments

The Fog Machine

https://www.bitchute.com/video/gl8G9OFh4A4I/
1•untiledsource•13m ago•0 comments

EU orders Google to share search data, open Android to AI rivals competitors

https://www.euronews.com/my-europe/2026/07/16/eu-orders-google-to-share-search-data-open-android-...
5•devonnull•13m ago•1 comments

Essence: Only what you mean, not a word more

https://github.com/jurassix/essence
2•jurassix•16m ago•2 comments

Naked mole-rat queens produce odorous chemical that prevents others reproducing

https://phys.org/news/2026-07-naked-mole-rat-queens-odorous.html
1•gmays•17m ago•0 comments

Why Org Social is the ethical Fediverse alternative

https://en.andros.dev/blog/734c56f2/why-org-social-is-the-ethical-fediverse-alternative/
2•andros•17m ago•0 comments

Elfuse: Run ARM64/x86-64 Linux ELF Binaries on macOS Apple Silicon

https://github.com/sysprog21/elfuse
1•birdculture•20m ago•0 comments

I built an offline PDF editor for Android, 25 tools, no server, no ads

https://play.google.com/store/apps/details?id=io.novexio.docufix&hl=en_US
1•WalkerMod•22m ago•0 comments

Why Microsoft's $80B Xbox Bet Backfired

https://www.wsj.com/tech/why-microsofts-80-billion-xbox-bet-backfired-5da21593
1•lesbarclays•22m ago•0 comments

Architecting the Defaults

https://jessicabrentnall.co.uk/blog/architecting-the-defaults/
2•mooreds•23m ago•0 comments

I Owe My Life to the Commodore 64 – By Sung J. Woo

https://www.goto10retro.com/p/i-owe-my-life-to-the-commodore-64
1•rbanffy•23m ago•0 comments

PsiQuantum has a plan to make a quantum computer out of light

https://www.technologyreview.com/2026/07/14/1140356/psiquantum-plan-massive-quantum-computer-out-...
1•rbanffy•23m ago•0 comments

Autoportrait

https://philipweiss.net/autoportrait/
1•philipfweiss•24m ago•0 comments

Ahead of the Curve: The Love We Cannot Reach

https://mayachristobel.substack.com/p/ahead-of-the-curve-the-love-we-cannot
1•rendx•30m ago•0 comments

Inkwell: It's a New Kind of Wrapper for Exposing LLVM in Safe Rust

https://github.com/TheDan64/inkwell
1•fanf2•31m ago•0 comments

My new game is a 3D 90s fever dream that fits in only 1024 bytes

https://js1024.fun/demos/2026/25/bar
2•KilledByAPixel•32m ago•2 comments