How to actually make a strong password (and why most advice is wrong)
Most people have been taught the same password advice: use uppercase letters, numbers, and symbols. Make it at least 8 characters. Change it every 90 days. Almost all of that is wrong, or at least badly incomplete. This post breaks down what actually determines password strength, how attackers approach cracking, and what you should actually do. What “password strength” really means A password is strong if it takes an attacker an impractical amount of time to guess it. That’s it. Strength isn’t about how complicated it looks — it’s about how long an exhaustive search takes. ...