this post was submitted on 26 May 2026
63 points (93.2% liked)
Fuck AI
7168 readers
1209 users here now
"We did it, Patrick! We made a technological breakthrough!"
A place for all those who loathe AI to discuss things, post articles, and ridicule the AI hype. Proud supporter of working people. And proud booer of SXSW 2024.
AI, in this case, refers to LLMs, GPT technology, and anything listed as "AI" meant to increase market valuations.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
@rob_t_firefly is it still best practice to use a different password for each account though? Because I have probably like 300 of them at this point, and I don't think I could remember that many no matter how memorable each one is
It's still easy enough if you use a mental algorithm.
Say, for example, your chosen memorized password is "correct horse battery staple". Let's make that password different for every site and service you use without having to remember each one.
For instance, you're signing into your todon.eu account.
Now, let's say your favorite one-digit number is 5, because your Auntie Mabel's birthday is on the 5th and she always enjoys your visits.
Combine todon.eu and the numeral 5, by choosing the 5th letter in the address. That's N.
Now, to turn that N into an innocuous-looking word you can add to the others in your password. Going over to your favorite phonetic alphabet, you see that N is "November."
Guess what? Your secure password for todon.eu is now "november correct horse battery staple".
Signing into your old account on Myspace.com? Using the above pattern, your password is "alfa correct horse battery staple".
Once you get into the habit of doing this routine, it'll become second nature and you'll be able to figure out your passwords to anything without trouble, using just your one memorized stock password plus a simple memorized tweak.
You can also make your own rules for exceptions. Are you buying hacker magazines from 2600.com? You get to decide if you want to count the dot or the C as the fifth character, and what to type in for the dot. (Perhaps "dot.")
You are correct, and what the previous user suggested is absolutely terrible opsec. Also correct-battery-horse-staple doesn't work nearly as well as claimed. Yes, I know, it's shocking they the guy who makes 4 panel funny comics on the Internet didn't actually invent a revolution in computer security. The reliance on common, easily spelled, easily memorized words significantly reduces the overall entropy level. But, more importantly, the biggest risk factor has always been password re-use. Passphrases still have to be either stored or remembered and trying to do that for every single component of our online lives is just insanity.
(Yes, Randall Munroe is a very smart guy who does a lot of great research for his comics, but in the end he is just making funnies on the Internet, not writing an academic paper for peer review).
For my money, just run vaultwarden. The biwarden code is all open source, if they do enshittify everything will get forked, and you'll be running your own infrastructure anyway so you'll be fine.
Yes. Everything different. Everything randomly generated. Everything MFA enabled where possible. Huge length passwords, at least 20 characters.