Creating strong password.

[erikoy]

Hello guys!

I just want to share something that was part and discussed in our 3 day training seminar about a certain topic on creating a good password. We could use this in cryptocurrency for we know that password is a vital part in creating accounts to store crypto in wallets, accounts for trading crypto and etc.

This may not apply to all because some users here are technically good and knows about this already. But, I still want to post this thread in the pursue of helping others for some average users that do not have that much knowledge on creating good and strong password.

I Hope that hackers could not easily invade our accounts especially with our precious BCT forum accounts and our digital wallets.

Take a look on this sample password and the time that the password could be crack!

Note: CTTO (Credit to the Owner of that SLIDE presentation)

[1714798846]

1714798846

[1714798846]

1714798846

[boyptc]

Wow that's an interesting photo just like the combination of letters and numbers.

Including special characters, symbols, caps and not would really make your password stronger. Btw, is that seminar is only about making good password for 3 days?

[TradeWaltz]

I watched a lecture on that topic some time ago. It said that the main thing about password is in its length and the randomness of the used words. They said something like: sunnyflyuingpotatoesholiday is aslmost as hard to crack as the ones with symbols and numbers. Don't know if it's true, but the lecture was persuasive)

[OgNasty]

I watched a lecture on that topic some time ago. It said that the main thing about password is in its length and the randomness of the used words. They said something like: sunnyflyuingpotatoesholiday is aslmost as hard to crack as the ones with symbols and numbers. Don't know if it's true, but the lecture was persuasive)

Adding some numbers, capitalization, and special characters is usually a good idea, see above graphic.

[erikoy]

Btw, is that seminar is only about making good password for 3 days?

Nope, it is just only a part or a topic of that 3 day training seminar.

They said something like: sunnyflyuingpotatoesholiday is aslmost as hard to crack as the ones with symbols and numbers.

It is true. It is really hard to crack long passwords but you may have gone difficulties in accessing your account. So, having the numeric and special characters to include in the password is way better than creating long password.

[Dudeperfect]

Yes, generating and using a strong password containing multiple characters, special characters and digits are crucial to deal with the infinite amount of hacking attempts taking place every second. I would not recommend using the password generator for generating passwords but to come up with own pattern of the password with complex characters because it is not just easy to remember but also unique in its own sense.

[Kezacky]

very helpful. I'm still new, does the overall password use sequential numbers and the alphabetical letters are still strong?
example:
~ abc12345def
~ 12345abcde

[boyptc]

Btw, is that seminar is only about making good password for 3 days?

Nope, it is just only a part or a topic of that 3 day training seminar.

Okay I thought its only about making passwords stronger.

very helpful. I'm still new, does the overall password use sequential numbers and the alphabetical letters are still strong?
example:
~ abc12345def
~ 12345abcde

I don't think so.

See the example above and as much as possible you don't create a password like that.

[Harlot]

The problem with uncrackable passwords is that you can't re-use them on other accounts and it leads to a lot of strong passwords in each different accounts which makes it impossible for you to remember all of them. Password manager softwares is the solution to this kinds of problem and I think not remembering all your passwords at all is not a problem anymore as there is a software doing it for you. Another thing to keep in mind is that even if you have a strong password you should regularly check your computer if it has any kind of malicious softwares as no matter how strong your passwords are if they can track it, your passwords would be useless.

[S_Therapist]

Password manager softwares is the solution to this kinds of problem and I think not remembering all your passwords at all is not a problem anymore as there is a software doing it for you.

I don't need a password manager even.
The only password I remember is my email's password. I use a random password on random sites and most of the time I reset. I don't feel boring. Sometimes
, I need to reset my accounts 2 times a day, lol.

~ abc12345def
~ 12345abcde

Those passowrds can be guessed easily. The best one may be- BtC4257$a, Almost impossible to crack. Use password with all combination as like as @OgNasty suggested.

[joniboini]

A strong password has a big entropy. Try to use an entropy calculator to see the entropy of your password. Using something like https://apps.cygnius.net/passtest/ is good (use it offline).

[pooya87]

that picture is a little misleading in my opinion, which i believe is because you are posting it out of context and without that explanation of the author. these words are probably examples but only by looking at the picture you won't get that.
for example the second one "looksstrong" shouldn't take 10 days to crack since it is words that are found in a dictionary. of course the "s" in "looks" makes it a little harder but it is still pretty simple to crack. same with "LooksStrong" although capitalization makes it a lot safer but it is not yet "safe".
part of the misleading part that i mentioned is because it is using words, you may look at "LooksStrong" and think a 2 word password with capitalization is strong and takes 59 years to crack so you use a 2 word password with capitalization like "MyPassword" and it cracks in 3 seconds!

generally speaking you want all conditions together not just some: length + hi/lo chars + symbols + numbers
here is an interesting website: http://www.passwordmeter.com/

[hugeblack]

We could use this in cryptocurrency for we know that password is a vital part in creating accounts to store crypto in wallets, accounts for trading crypto and etc.

Strong passwords are a part of protecting your account but not only your account security. There are better ways to protect your account from using a unique password though it is the basis for protecting your account.

One of the most critical problems, in my opinion, is the difficulty of generating those words from the ordinary user where it is difficult for the user to remember passwords such as "fw5J||59TanCRys."
So the best solution is to save those words "notepad, paper," copy and paste it every time. Which will be dangerous if there are viruses on your computer.
One of the best sites that offer that service is[1]

[1] https://strongpasswordgenerator.com/ "offline"

[sud]

Very interesting topic. I think everyone using online services should take to heart, especially in crypto space when your money is at stake. I really started thinking about strong passwords as a safety measure, when I was making my first account on coinbase (which was the first crypto related service I used). So I made a pattern that helps me remember all my passwords on different sites without always checking - I'm using my core word and add another part which depends on the service name, of course everything includes lower and upper case letters, numbers and special characters. Same goes for passphrases to all my crypto wallets.

[gorkem]

Good recommendation) but if Your computer is infected with a virus any password can be hacked.To minimize the risk it is worth paying attention to browser extensions.If possible, do not install anything.I also use a touch keyboard when entering passwords.

[sud]

@gorkem

You mean screen keybaord? This is good idea, I'm doing it whenever I have to log in somewhere using unknown computer, so the potential keylogger won't hijack my password. Another thing is to always turn on 2 factor authenticator (application one, not SMS), it greatly reduce the risk of hacking your account.

[guybrushthreepwood]

Take a look on this sample password and the time that the password could be crack!

Note: CTTO (Credit to the Owner of that Picture)

I don't think this is wholly accurate. The second one would take less than a day to crack according to https://howsecureismypassword.net/

"looks5strong" would be four years.

Regardless, sometimes it doesn't matter how strong your password is if your security is lax in other areas and that's where people often slip up. If you get a keylogger or some other virus that can grab your passwords from your browser then you're screwed either way. I've seen people boast online that their passwords are 30 random characters but yet they keep them in a notepad or in their email. Sometimes all attackers need is access to your email and then they can reset your accounts at will.

[Yadstiker]

A great idea of yours sharing this kind of information for all to get aware and have an idea by choosing a good password but we should also consider it's still possible to get scammed when you open too many sites which has too many adds and maybe if you don't know it's a fishing site until you can't open your account.

[erikoy]

A great idea of yours sharing this kind of information for all to get aware and have an idea by choosing a good password but we should also consider it's still possible to get scammed when you open too many sites which has too many adds and maybe if you don't know it's a fishing site until you can't open your account.

Definitely but that is a different story, I agree that those hacking sites could phished one out just by letting you logging in a fake website or application that looks like real.

Take note that legit and secure website read like this (https:) and not secured website has only like read like this (http:) without letter s. This is the only thing I know about secured or legit website and not secured website. I guess there are many good members here that could explain further on your posts. You may create also a thread for this for the newbies. This is very important for the awareness of the new comers here. This will let them avoid  scam and phishing activities.

[TryNinja]

Take note that legit and secure website read like this (https:) and not secured website has only like read like this (http:) without letter s. This is the only thing I know about secured or legit website and not secured website. I guess there are many good members here that could explain further on your posts. You may create also a thread for this for the newbies. This is very important for the awareness of the new comers here. This will let them avoid  scam and phishing activities.

This has nothing to do with a "legit" website. Anyone can get a free SSL certificate in 2 minutes (literally) and then have HTTPS in their website.

You shouldn't be looking at the text before the domain but at the domain itself. E.g: If you are on Binance, double check if it's binance.com and not binaence.com or binance.tk; Most phishing websites try to take advantage of the user who type the wrong domain or click at the unknown email with the fake website.