• Bazoogle@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    1 year ago

    There’s realistically no reason not to generate the max password. The different in possibilities between a password with 16 characters and one with 20 (using a-zA-Z0-9!@#$%^&*()?-+." which isn’t even all the options) is 1.2E30 v s 4.13E37. That’s seven orders of magnitude from 4 characters. The difference between $1 and $10,000,000. But to be fair, 1.2E30 possible combinations is kind of a lot already, but why not add a few more characters just for the hell of it?

    • StudioLE@programming.dev
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      1 year ago

      If you always use the maximum then the length of your password becomes predictable which reduces the number of permutations.

      It’s probably better to use a password of around 60-100% of the maximum

      • Bazoogle@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        I mean, that’s true. And that’s usually the case since I typically use a slider. But if you password is 100 characters, numbers, and symbols, I don’t think telling them the exact length is going to help much.