Honestly the variety of letters doesn’t matter much because your attacker isn’t going to be able to thin their dictionary unless they have pre existing knowledge of which letters are in your password, right?
The alternating pattern and being clustered on the index finger is valid though and something someone could easily use to initially narrow their search.
For clarity - I use much more secure password schemes than a random lowercase keysmash and wouldn’t actually use this, but thanks for the writeup!
I think you could thin your dictionary if you know there are only so many different letters being used. You could ignore all passwords with more than N different letters.
To be fair, once you start worrying about any of this with a password that long, you are probably attempting to protect yourself from a state entity. No one will ever spend this amount of (computational) effort on you unless you have a large target on your back.
Don’t worry though, I wasn’t suggesting you’d use this password. But once you spend 30 minutes analayzing some random keysmash as if it were used as a password, you basically have to comment about it. Something something sunken costs.
Sure! But how would you know that there’s only n letters being used? I guess you could make your search start from all passwords with only 1 letter for the entire length of the password, then 2, then 3 etc if you think its likely that they haven’t used a strong password.
You mean you aren’t being targeted by the state for your posts in femcel memes? You need to femcel harder! /j
Honestly the variety of letters doesn’t matter much because your attacker isn’t going to be able to thin their dictionary unless they have pre existing knowledge of which letters are in your password, right?
The alternating pattern and being clustered on the index finger is valid though and something someone could easily use to initially narrow their search.
For clarity - I use much more secure password schemes than a random lowercase keysmash and wouldn’t actually use this, but thanks for the writeup!
I think you could thin your dictionary if you know there are only so many different letters being used. You could ignore all passwords with more than N different letters.
To be fair, once you start worrying about any of this with a password that long, you are probably attempting to protect yourself from a state entity. No one will ever spend this amount of (computational) effort on you unless you have a large target on your back.
Don’t worry though, I wasn’t suggesting you’d use this password. But once you spend 30 minutes analayzing some random keysmash as if it were used as a password, you basically have to comment about it. Something something sunken costs.
Sure! But how would you know that there’s only n letters being used? I guess you could make your search start from all passwords with only 1 letter for the entire length of the password, then 2, then 3 etc if you think its likely that they haven’t used a strong password.
You mean you aren’t being targeted by the state for your posts in femcel memes? You need to femcel harder! /j
You all are such nerds
Thanks :3