Source: www.schneier.com – Author: Bruce Schneier
Comments
ThemePro • August 25, 2025 8:07 AM
Why cite a paywalled Wired puff piece instead of KrebsOnSecurity? Krebs actually did the work and correctly pointed the finger at Paradox, not customers like McD’s. Wired’s framing was misleading clickbait.
Anonymous • August 25, 2025 9:27 AM
@ThemePro
Andy Greenberg’s piece is from July 9, 2025. Sorry you can’t see article. Paradox.ai jumps on it somewhere around paragraph 5.
Krebs’ article with additional detail is July 17, 2025.
wiredog • August 25, 2025 10:32 AM
They should use a passphrase. Something like:
two all beef patties special sauce lettuce cheese pickles onions on a sesame seed bun
jelo 117 • August 25, 2025 12:07 PM
As von Neumann said “Any one who considers arithmetical methods of producing random digits is, of course, in a state of sin. For, as has been pointed out several times, there is no such thing as a random number — there are only methods to produce random numbers, and a strict arithmetic procedure of course is not such a method.”
Have your pseudorandom number, just make sure it isn’t in the range of some low complexity function (where the function domain is included when measuring complexity).
Subscribe to comments on this entry
Leave a comment
Sidebar photo of Bruce Schneier by Joe MacInnis.
Original Post URL: https://www.schneier.com/blog/archives/2025/08/poor-password-choices.html
Category & Tags: Uncategorized,network security,passwords – Uncategorized,network security,passwords
Views: 0
