frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Show HN: Baulist – Outfit discovery/shopping app in a scrolling feed of yourself

https://www.baulist.com
1•rafaelero•24s ago•0 comments

All Products and Supplements User Reviews 2026 Revealed

https://wanderlog.com/view/ehbzasctvc/burntide-reviews-2026-we-tried-it-my-honest-review
1•palirast•7m ago•0 comments

Show HN: Self-Hosted AI That Sees, Plays Minecraft, and Reacts

https://github.com/Alradyin/wallie-V2
1•Alrady•7m ago•0 comments

Show HN: Agentic FC – a football management SIM played by AI agents over MCP

https://github.com/gaemi/agentic-fc
1•gaemi•7m ago•0 comments

Limiting web server bandwidth the brute force way

https://utcc.utoronto.ca/~cks/space/blog/web/ServerBruteForceBandwidthLimit
1•1317•8m ago•0 comments

The internet does not want readers. It wants livestock

https://grumpywelshman.com/the-internet-doesnt-want-readers-it-wants-livestock/
1•toofy•10m ago•1 comments

Agentic Coding Arena – Compare OpenAI, Anthropic, and Other Models

https://arena.logic.inc/
1•gurjeet•12m ago•0 comments

Please Delete Your Repository

https://github.com/Vandivier/ladderly-3/issues/652
1•figmert•14m ago•0 comments

Get started with the Forgix board the $50 FPGA dev board

https://www.hackster.io/adam-taylor/getting-started-with-forgix-4c72eb
1•signalhound•14m ago•0 comments

Show HN: Internationalizationstack – Fix AI Localization Bugs in Claude Code

https://github.com/i18n-agent/i18nstack
1•lokinkl•17m ago•0 comments

We Are Living in a 'ChatGPT Flyer Pandemic'

https://www.404media.co/we-are-living-in-a-chatgpt-flyer-pandemic/
3•xz18r•17m ago•0 comments

You don't need to work on hard problems (2020)

https://www.benkuhn.net/hard/
1•downbad_•18m ago•0 comments

Chasing the Hallucinations: KPMG's AI-Powered Attempt at "Redefining Excellence"

https://gptzero.me/news/investigations-kpmg/
1•antondd•19m ago•0 comments

Show HN: Jacobian Fingerprinting in LLM's

https://author2vec.com/jlens
1•tristenharr•20m ago•0 comments

Vivaldi 8.1: Rowing in calm waters

https://vivaldi.com/blog/vivaldi-on-desktop-8-1/
1•calebgcc•21m ago•0 comments

Finnish Supermarket truck appears in Khamenei funeral procession

https://www.helsinkitimes.fi/world-int/29028-k-group-branded-truck-appears-in-khamenei-funeral-pr...
2•helsinkiandrew•21m ago•0 comments

The US should pull out of the Middle East

https://phillipspobrien.substack.com/p/the-us-should-pull-out-of-the-middle
1•JumpCrisscross•25m ago•0 comments

97% of websites expose zero tools an AI agent can use

https://sitespeak.ai/research/ai-readiness-report-2026
2•kizum•28m ago•2 comments

Stop Lying to Your Cofounder

https://avivbenyosef.com/stop-lying-to-your-cofounder/
1•avivby•28m ago•0 comments

Show HN: Isnad – A Python framework that uses 1,200-yearold Islamic logic for AI

https://medium.com/@alizahidraja/can-a-1-200-year-old-trust-system-help-build-more-reliable-ai-88...
2•alizahidraja•29m ago•0 comments

Format Factory

https://formatfactory.io/
1•gregzeng95•29m ago•0 comments

Brown Professor Suspects Majority of His Class Used AI to Cheat

https://www.insidehighered.com/news/faculty/learning-assessment/2026/07/08/brown-professor-suspec...
2•red_admiral•31m ago•2 comments

Bonnie Tyler, singer of Total Eclipse of the Heart, dies aged 75

https://www.bbc.com/news/articles/cg5pd9z2487o
2•theanonymousone•34m ago•0 comments

The AI risk in marketing stacks inside orgs

https://singulr.ai/blog/the-hidden-ai-risk-in-your-marketing-stack-shadow-ai-automation-pipelines...
1•shivc•35m ago•0 comments

Process Is a Tool, Not a Virtue

https://blog.kevingoldsmith.com/2026/03/18/process-is-a-tool-not-a-virtue/
1•grepsedawk•35m ago•1 comments

Ask HK: Does it feel like the top models routinely dismiss your opinion/advice?

1•bridgettegraham•36m ago•2 comments

How to avoid dementia – what the science says

https://www.nature.com/articles/d41586-026-02098-z
3•doener•37m ago•0 comments

Relm – local LLMs as base-R objects, with interpretability

https://github.com/Vadale/R-ebirth
1•grauk•38m ago•0 comments

Tuta is making it easier to migrate all your emails to Tuta Mail

https://www.neowin.net/news/tuta-is-making-it-easier-to-migrate-all-your-emails-to-tuta-mail/
1•bundie•42m ago•0 comments

The UK plans to ban romantic AI chatbots for under-18s

https://blog.uehiro.ox.ac.uk/2026/06/the-uk-plans-to-ban-romantic-ai-chatbots-for-under-18s-young...
2•ilreb•44m ago•0 comments