I hate the password nazis. At least 8 chars, at least one number, one punctuation, one uppercase... That's all crap. It leads to "MyPassword1."
We have known for decades that a better approach is to pick two or three or four random words. "sticker cube bead robot". That's easy to remember and a LOT better than "Mitzie1."
These are my default password generation settings. 128 characters unless a website gives me a hard time about it. 
It’s all fun and games until you need to type it by hand into an app that won’t allow BitWarden to autofill it or paste for some reason. 🤣
Seriously though, I do something similar, but there are a few accounts I still have to use a human memorable password with because the apps just won’t play nice with a manager.
I prefer 10 words. It's easy for wrote it on keyboard when i want log in on some untrusted device for installing bitwarden but with enought trust for some logins.
This is what I've been doing for years. So much easier especially if I need to enter it on a small device for wifi.
And I get little movies in my head!
Theres gotta be some fix for modern day password solutions
12345 is my choice!
overly complex passwords just means that users will write them down. ugh. but at least we have a plethora of password managers now for people to use... and write down their master password 😆
the amount of people that used to write their passwords on post-it notes at my office and say things like "i know im not supposed to do this, don't look" as they pull it out when i was at their desk was too damn high.
When I migrated from memorized passwords (all of them shared the same mnemonic — terrible security) to Bitwarden as my password manager, I came up with a long complex master password. I proceeded to forget it and literally sat down for two hours trying to remember, shitting my pants that I might have just lost everything. Luckily I finally remembered and will never forget now (unless I get a serious head injury).
Ugh. I know that feeling. Passwords are a pain. I like what the FIDO alliance is doing.
What's FIDO alliance doing?
Passwordless authentication. FIDO2 uses a variety of methods, including biometrics, public key cryptography, and secure elements, to create a secure and user friendly authentication experience instead of using passwords.
KeePass, look into it
If you hide the post-it under the keyboard, the bad people won't find it.
😂😂 The number one hiding spot.
KeePass, look into it
Merci à vous
Two-three-four words password is crap, if you use the words at their original spelling. Also, with words you would still reuse the password that is worse than having a weak one. Use a password manager and generate random ones at least 16 characters long.
I do agree though that many developers pick the password policy that is too strong for their app. Nobody would even try to hack them, but they still make the user suffer.
Passkeys are the future 💪
I like (hate) it when I met all requirements and it still says my password isn't good.
