frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Are Your Passwords in the Green? (2025)

https://www.hivesystems.com/blog/are-your-passwords-in-the-green
1•kemotep•1y ago

Comments

kemotep•1y ago
With NIST finally updating their standards to recommend 15 character password minimums last, I like to use their recommendations and compare them to these charts show how effective such a password would be.

Using E = L x log2(R), where E is entropy, L is number of characters in the password (15), and R is the total number of possible characters used (26 for all lowercase letters), you can get ~70 bits of entropy. Using a password manager like Bitwarden for a 15 character password using the full character set minus the ambiguous characters (65 characters total) leads to ~90 bits of entropy.

Using these charts and figures from the article, a well configured bcrypt setup means even the fastest computer systems still in 2025 cap out at 1 billion hashes per second for offline cracking (without getting into Nation States spending billions on just cracking your passwords, or dedicating all the world’s supercomputers or some other speculations). So to calculate how long it would take with a “realistic” password cracker in 2025, would use this formula:

((((((2^(70-1))/ 1 billion hashes per second)/ 60 seconds)/ 60 minutes)/ 24 hours)/ 365 days) to get ~18,700 years. (Nearly 20 billion years for the Bitwarden generated one)

But without a password filter checking for known bad passwords somewhere like Have I Been Pwned, even a 30 character password that has been leaked is useless. Would be instantly “cracked”. So I personally would have the password policy be:

1. 15 character minimum, no composition rules.

2. All passwords filtered for known bad passwords against HIBP.

3. Accounts protected by MFA.

4. Combination of network controls, best practices security configurations, and alerts and monitoring to help detect and limit/eliminate password guessing attacks, password database dumps.

Why Europe's tech ecosystem collapses in simulation (a causal-loop analysis)

https://hebelai.substack.com/p/why-europes-tech-ecosystem-collapses
1•bastbuch•3m ago•0 comments

Negative squaring – pre-tilted 3-bit quantization beat naive 4-bit

https://github.com/elpinyeknom/negative-squaring-/tree/main
1•faDOOM•6m ago•0 comments

Show HN: Airline pilot's interactive guide to aviation radio

https://jameshard.ing/posts/aviation-radio/
1•jamesharding•10m ago•1 comments

Ask your data in plain English

https://tablitsa.app/blog/ask-your-data-in-plain-english
1•valerko•10m ago•0 comments

Nearly half of U.S. retail spending comes from top 10% of earners

https://www.marketplace.org/story/2025/09/17/top-10-of-earners-make-up-half-of-us-retail-spending
1•akyuu•10m ago•0 comments

EasyJet is essential British travel infrastructure

https://revman.substack.com/p/easyjet-is-essential-british-travel
1•edward•11m ago•0 comments

Pgrust – Postgres, Rewritten in Rust

https://pgrust.com/
2•jonbaer•12m ago•0 comments

A Committee of Identical Agents Is Still One Mind

https://bugmedaily.substack.com/p/a-committee-of-identical-agents-is
1•enesunal•13m ago•0 comments

Comparing ML models in small molecule drug discovery

http://fbdd-lit.blogspot.com/2026/04/comparing-ml-models-in-small-molecule.html
1•surprisetalk•15m ago•0 comments

Late Bronze Age Collapse

https://acoup.blog/2026/01/30/collections-the-late-bronze-age-collapse-a-very-brief-introduction/
1•dmonay•16m ago•0 comments

Codex Chronicle

https://learn.chatgpt.com/docs/customization/chronicle
1•dmonay•17m ago•0 comments

Show HN: MCP Gateway – Turn existing APIs and databases into MCP servers

https://swaggertomcp.com
1•mhmt_dmr•17m ago•0 comments

Microcosm Industries: simulation toys and software microcosms

https://microcosm.industries/
1•arbesman•19m ago•0 comments

China's 'Silicon Valley' in Hangzhou: Home of DeepSeek, Alibaba and Ant Group [video]

https://www.youtube.com/watch?v=aEx7DvR5fZE
2•binyu•19m ago•0 comments

Hardening stb libraries using AI agents

https://mrunix.me/posts/stb-hardening/
2•mrunix•19m ago•0 comments

AI Slop by Robobun

https://github.com/oven-sh/bun/pull/33864
1•struanr•21m ago•0 comments

Show HN: Intel Desk, a geopolitical desk that scores sources and tracks Hormuz

https://www.inteldesk.app/
1•wudwerd01•22m ago•0 comments

Google DeepMind workers in UK vote to unionize amid deal with US Military

https://www.theguardian.com/us-news/2026/may/04/google-deepmind-uk-workers-union
2•nervai•22m ago•0 comments

Q1 2026 Innovation: Open-source collaboration is accelerating worldwide

https://github.blog/news-insights/policy-news-and-insights/q1-2026-innovation-graph-update-open-s...
1•AtroGi•23m ago•0 comments

Designing a Distributed Anti-Cheat Architecture

https://medium.com/@www.ahadprogamer/designing-a-distributed-anti-cheat-pipeline-14f13410d3e5
1•Ahadprogamer•26m ago•0 comments

Testing GPT 5.6 [video]

https://www.youtube.com/watch?v=SettwwX2cCI
1•mgh2•32m ago•0 comments

LLMs are bad at novelty, but that is our chance to Singularity

1•alex_brajkovic•32m ago•1 comments

I'm Quitting as Pluto.jl Maintainer

https://discourse.julialang.org/t/im-quitting-as-pluto-jl-maintainer/138028
3•fons-p•35m ago•1 comments

One local man's immunity to ticks could save us all (2015)

https://www.caryinstitute.org/news-insights/media-coverage/how-one-local-mans-immunity-ticks-coul...
1•downbad_•36m ago•0 comments

Production Data and AI Agents

1•Eapz_06•37m ago•0 comments

Accretive Editing

https://justindfuller.com/programming/accretive-editing
1•iamjfu•39m ago•0 comments

Show HN: An interactive double pendulum "fractal"

https://www.doublethe.fun
1•teaearlgraycold•39m ago•0 comments

A staggering class divide now separates how Americans experience AI

https://www.axios.com/2026/07/10/ai-class-divide-fable-sol-mythos
1•giuliomagnifico•41m ago•0 comments

Man nearly sucked out of 'detached' window on Ryanair flight

https://www.france24.com/en/live-news/20260710-man-nearly-sucked-out-of-detached-window-on-ryanai...
2•jacquesm•46m ago•0 comments

AI Surveillance and Social Progress

https://www.schneier.com/blog/archives/2026/07/ai-surveillance-and-social-progress.html
2•cdrnsf•46m ago•0 comments