Nic Baxter via luv-beginners wrote:
I have been using Linux distributions on workstations and servers for over 20 years. User accounts have been hacked in the past when users insisted on using dictionary based passwords.
I strongly recommend: 1. don't use passwords. Use keys. 2. if you really have to use passwords, use a password manager. 3. if you have to generate passwords, use xkcdpass (or the equivalent algorithm in your head). See https://explainxkcd.com/936 Make sure you use xkcdpass 1.16+, which defaults to the eff-long dictionary. Older xkcdpass defaulted to some other crap dictionary. See https://www.eff.org/deeplinks/2016/07/new-wordlists-random-passphrases See http://world.std.com/~reinhold/diceware.html (old, DO NOT USE) Yes, you really need that many words. Consult your family mathematician before reducing the number of words.