What is your policy for passwords?

Usually most people don't go past a 50 char limit. And as for 30 chars you'd be surprised how many people don't even go to half that at 15. Recently my friend has told me that he will set his limit at 100 char. I can't imagine having a 100 char. password unless you have a really top-class password storage manager like LastPass.

However, brute-force hackers and crackers will have little time getting passwords that are too simple like "Password!" or "abc123" I read that they also look for human tendencies such as using the username as the password, using real info, repeating characters, using dictionary words w/numbers, or capitalizing the first or last char.


Generally speaking, password Length > password Complexity as a 15 char password is 33,000 times more secure than an 8 char password. Statistically an 8 char password takes 348 minutes in order to crack, a 1 to 5 char password can be easily cracked.

So as for a good password what of a string like this? yaNuSe9atHuhu6rucreVEswAFAXequz7vUPrEXu

Well, its not possible to remember such a string only if some details are related like. You have written 4 words in the backward order of the names of your best friends. Thats just an example.

Names of friends/family, places of birth, street address, or other personal info which they say you shouldn't use in passwords. Also it could be easy for some figure out that backwards pattern. If they were to guess even one of the names, they can much more easily crack the other three using an algorithm.

My friend is using something like this as a password:
Ēƌ´žźnjxŴnƐƀżf=|ŽĮÂ#ƜŤŒǐƤ~ƄÜƄ8Šž~ÔŠŴƊjƐIJŴ

Lol, never use passwords that you can't remember.