this post was submitted on 03 Nov 2023
274 points (87.0% liked)

Technology

59219 readers
3980 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
L3s@fry.gs
L4s@fry.gs
L4s@lemmy.world
enu@lemmy.world
274
Security expert reveals surprising way to make your password stronger: use emojis (nypost.com)
submitted 1 year ago by Salamendacious@lemmy.world to c/technology@lemmy.world
204 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Cosmos7349@lemmy.world 17 points 1 year ago* (last edited 1 year ago) (2 children)

As a software developer who has worked with a lot of symbols and emoji... PLEASE DON'T DO THIS.

Software doesn't all handle these symbols the same way, and without tech knowledge (or even with) , it's very possible to not be able to log in easily. I'm kinda drunk rn, but I'll try to explain as simply as I can...

For example... skintone emojis are actually two characters, a face and a skin tone modifier. I think those ones are always two characters but some of these "multi-char" characters can be normalized into a single character. But not everyone handles this the same way. For example, Safari might normalize the emoji, but Firefox might treat it as two separate characters... And this would probably make your password not match. But basically... text has lots of edge cases; I'd advise to use normal passwords please (also maybe a password manager)

[–] banneryear1868@lemmy.world 6 points 1 year ago (1 children)

Was gonna say... you're relying on the consistency of external emoji handlers that you don't control. Ascii emojis are one thing.

[–] Cosmos7349@lemmy.world 6 points 1 year ago (1 children)

Is my explaintion ok? The hard kombucha was... harder than I anticipated

[–] banneryear1868@lemmy.world 1 points 1 year ago (1 children)

It was pretty normal lol. Basically everything between the visual of an emoji and what "text" is entered is not in your control. So it's great for security but not in practice as a password. What brand was the kombucha I want some.

[–] Cosmos7349@lemmy.world 3 points 1 year ago

I didn't realize NYC has a physical Juneshine location. So I got a flight... and a Juneshine cocktail....

[–] stardreamer@lemmy.blahaj.zone 2 points 1 year ago* (last edited 1 year ago)

Thanks for the feedback! I'll be sure to use non-printing characters instead of emojis for my passwords! (They can't guess it if it's invisible right?)

In all seriousness, why are people so adverse to using password managers? People are plenty willing to use the browsers built-in "remind my password" instead of a proper password solution such as bitwarden... And they come up with such "hacks" just to avoid using a proper length password.