search

keepassxreboot / keepassxc

KeePassXC is a cross-platform community-driven port of the Windows application “Keepass Password Safe”.
https://keepassxc.org/
Other
20.83k stars 1.44k forks source link

Random Password length #2767

Closed vis15 closed 5 years ago

vis15 commented 5 years ago

Summary

When generating a password have an option to randomize the password length.

Desired Behavior

In the password generating window have the option to make the password length between two values, and/or have a slider for the about to be variable.

Context

Having the same password length for all passwords is not good for security. Thus have a variable password length would increase security greatly. Thank you.

droidmonkey commented 5 years ago

I do not agree that having passwords the same length is not good for security. 15 character passwords are impossible to crack with current supercomputers. This would add complexity with very little gain. You can move the slider very easily between generation attempts.

phoerious commented 5 years ago

There is no security gain at all. A longer password is always more secure than a shorter password of unknown length and the length of the original password cannot be deduced from its hash value anyways.