It depends on how long the passphrase is. Characters that is 8 in length, having upper case and lower case alphabet, number and 1 other character will be hard to brute force. Some people can make it more longer as they backup the passphrase in different locations away from the seed phrase backup. More characters, harder and becoming impossible to brute force.
What are you talking about?
A 8 length passphrase can be brute-forced in minutes depending on the hardware capabilities of the attacker and efficiency of the implementation. If someone is going to use a passphrase and share a 24-word seed phrase with other people, then they should use a passphrase of length 20 or more, not less. Do not give insecure device, if someone shares their seed phrase and uses a passphrase of length 8 they have reduced their brute-force resistance by 99%.
You can read what I posted again. In another words, 8 characters of easy to guess words can be easy to brute force. 8 characters that contains different characters like upper case, lower case, numbers and other characters like ';!?*$/@) is hard to brute force. More characters, harder to brute. More characters than the more, impossible to brute force. If I have to recommend the length of the passphrase and with different characters, I have recommended at least 30 characters to people despite that I know tech people recommend 16 to 20 of such characters.
Hard to brute force does not mean it can not be brute forced.
I still added more characters, hard
er to brute force.
More more characters, impossible to brute force.
Edit:
I have edited it to at least 12 characters that has upper case, lower case, numbers and other characters like ';!?*$/@). It can take over 5000 years to brute force this way which I see as impossible.
I did, that is why I replied to it. As a native English speaker, if I misunderstand your post and derive a different meaning from it then you have intended then this is a note for you that the writing is flawed and should be corrected. The way that you have initially written it and the way that it read is that passphrases of length 8 will be hard to brute force, which is entirely incorrect -- I can brute force it at home in a short amount of time.
Therefore your revision to 12 characters is much better. Keep in mind that the estimated time to brute force scales with the attacking
hardware, software AND time. If you get an estimate of over 5000 years today, this does not mean this is true for every possible attacker and it is limited to the estimate from the standpoint of today. In 10 years this 5000 years may drop to 2000 years or even less depending on what happens with technology and breakthroughs during that time.
Nevertheless, while for most users a 12 character passphrase would be good I would still not recommend it in the case that is presented here where the seed phrase is completely exposed. Many people fail to understand that even if you leave a seed phrase to a "trusted party", in terms of security and the change in the threat model is it equal to general exposing. You lose the security that comes from having both, since now somebody (no matter how "trusted" they are) has 1 part of the combination.
Funny dogma this is, I have been doing this successfully for decade for things unrelated to seed phrases (and in recent history for seed phrases) and we have even been doing that in the context of security work. The right lesson is not "X method is always bad" as that is pure dogma, the right lesson is:
Any method is bad when used incorrectly by someone who does not understand it.
"Being able to use it" is not equal to "understanding it". Issues happen because of a lack of understanding -- therefore, someone who knows what they are doing can use seed splitting in a better and safer way than someone who does not know what they are doing can use SSSS, multi-signature or whatever else you suggest to them.
Education and capability is key, not the method.
Most of these shortcomings are irrelevant to most people who would try using SSSS, "inability to revoke" a joke at best. Furthermore, it has "complexity" twice, once as social and once as technical -- as if multisignature does not have any complexity in its implementation or whatever else he is recommending.
