I’m aware of what constitutes a decent password, but typing in 15-30 random characters each time I lock my computer screen is starting to get a bit taxing.

How secure does my user password really need to be and what are the threats to it? Does the same apply to a root-enabled user as a “regular” user when it comes to password security?

For context, my threat model doesn’t need to account for real people breaking in and accessing my computer, the damage would be very contained.

Bonus question - what are the risks of having a weak password on a root user on a spare laptop on the same network as my main device that is used exclusively for web browsing? Thanks.

  • Shawdow194
    link
    fedilink
    63 months ago

    Just like a chain, strength is determined by the weakest link

    Use secure passphrase for ALL your devices on your network

    • Shawdow194
      link
      fedilink
      43 months ago

      To add on, create a separate network with WPA3 for your more sensitive devices and keep those IOT devices on their own network

    • @[email protected]OP
      link
      fedilink
      English
      33 months ago

      I guess my question is why so? How vulnerable are my devices with a compromised device on the network?

      • Shawdow194
        link
        fedilink
        13 months ago

        If they get into a vulnerable device on your network and you have weak network security they can dictionary attack into the network. Or if you have UPNP enabled it’s already done. From there any device connected is compromised