I learned something new about long, somewhat random passwords. The cartoon is great.

Further, in my universe, there are well over 100 passwords I need to know, and every password verifier I have is case sensitive. So, the "26" number that some are using above is "52" for me. For example...

Originally Posted By: LCranston
Quick append- length is good. length plus more characters is better.
there are 10 numbers- so using just numbers
password complexity = length times 10. 8 digit give 99,999,999 combos
there are are 26 letters, 36 letter plus numbers- same 8 digit is 36 to the 8th power (36*36*36*36*36*36*36*36)-
with special characters you go from 36 characters to over 50
now (50*50*50*50*50*50*50*50)


So, those complexities become...

(52*52*52*52*52*52*52*52) for letters only
(62*62*62*62*62*62*62*62) for letters and numbers
(76*76*76*76*76*76*76*76) for letters, numbers, and special characters

So, length with only letters is HOLY COW, TOTALLY AWESOME. Adding numbers and special characters is useless overkill for my purposes. Literally, adding numbers and special characters kills the ease of remembrance, while adding needless complexity.

Thus, the general rule of "long, letters only, and at least somewhat random" remains a fantastic rule.
_________________________
If you're reading this, it's too late.