Low Information Voter on Nostr: It really depends on your threat model. To keep random script kiddies from an online ...
It really depends on your threat model.
To keep random script kiddies from an online brute force attack, even a weak password will do as long as its not one in typical lists, or one you've used before that was leaked in a hack. Fail2ban and the like prevent exhaustive brute force attacks.
To defeat a skilled adversary with cloud or physical access to your files, yeah that's hard, but 128 bits+ of entropy is probably enough.
To keep random script kiddies from an online brute force attack, even a weak password will do as long as its not one in typical lists, or one you've used before that was leaked in a hack. Fail2ban and the like prevent exhaustive brute force attacks.
To defeat a skilled adversary with cloud or physical access to your files, yeah that's hard, but 128 bits+ of entropy is probably enough.