Minimum of 16 characters is great, especially for a service with technical users... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		smt88 on May 4, 2022 \| parent \| context \| favorite \| on: Heroku resetting passwords for “a portion” of thei... Minimum of 16 characters is great, especially for a service with technical users. "Scary short" and "same password" are terrifying to read. Get a password manager (I recommend 1Password) and use it. My dad is 78 and uses a password manager -- so can you. Regardless, stop reusing your password please! This is the most basic security measure possible.

onphonenow on May 5, 2022 [–]

Scary short is fine. 6 characters (case sensitive + 10 digits alone) = plenty of complexity if you are doing ANY type of intrusion detection.

Coupled with a Yubico and I feel pretty darn secure.

I don't re-use the password, because it doesn't rotate I can also remember it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact