Quote:
Originally Posted by Maker
A 16 character password is far too short. Especially for the one that unlocks your entire online life. Add a passphrase. Example: Phrase you remember "I like to get up at 6 in the morning to go for a walk with my dog" ... becomes typed as... "Iltgua6itmtgfawwmd"
A 12 character password is hackable in minutes.
A password manager should be able to generate random 32 character (or longer) passwords for the entries. Who cares if they are impossible to type manually, the password manager should auto-type them for you.
There is a big difference between "cloud based" password managers and storing your data file in the cloud. The first maintains custody of your data file. That alone is insecure because you rely on them to do all your security, and hope they never mysteriously disappear or get compromised. When you have complete control where you store your data file, you can put it anywhere you want. Even in several places. The security built in to the data file encryption is 100% sufficient, and you can access it anywhere you can get to your cloud.
|
Saying 12 or 16 is too short is only part of the discussion IMO