I love how half the sites I use are spiralling deeper and deeper into pure security theatre by enforcing extremely complicated password policies whose only practical effect is to create a single point of failure for everybody's personal data by forcing them to rely on password manager apps because any password that actually satisfies the rules is impossible for humans to remember, and the other half are like "actually, we're switching to PINs, so now your account is secured by a six-digit number".

Time it takes a hacker to brute force your password in 2025

(by hivesystems.com)

How different Six of Crows characters would log into their accounts:

Inej: Keeps a list of passwords for different websites which she's probably memorized.

Kaz: Uses the one password he's had for years that's indecipherable— probably another metaphor.

Jesper: Smashes the 'Forgot password?' button without even trying.

Nina: Has to keep adding variations to her passwords cuz they're too predictable and almost always contain the word 'Waffles'.

Matthias: Swears he remembers the password, gets it wrong, then retries the same password blaming the computer for reading it wrong.

Wylan: Wylan123...123Wylan..KillKuwei. HA!

hello 👋🏼

first loving the twiyor 😌

second I have a tech question I was hoping you might be able and willing to answer: are the 'we send you a link to your email to log in instead of using your password' actually more secure or are businesses just being mean to me personally?

hope your day is kind 😊

Ok so Authentication (going to call it auth going forward) is a very large topic and there is some baseline info I want to convey before answering you question.

First, auth breaks down into 3 methods. Confirming what someone knows, confirming what someone has, confirming what someone is.

What you know: this is the traditional password method, do you remember your password you made for us? Do you remember your username? great you can get in if you know those. Stealing these creds is very straight forward, you either guess until you are right or you steal them from where someone has them stored/written down. This is why you should NEVER store your password in a browser and use a password manager instead. I would rather see people write passwords on post-it notes then store them in Google Chrome or Edge. Seriously, it is incredibly easy to steal passwords from Chrome.

What you have: have ever been asked to put an MFA pin into a phone app? that's this method, they are putting predictable generated numbers on your phone that you can then turn around and use to prove you are in physical possession of your phone. This is much more difficult to steal and usually requires physically accessing a phone or infecting it in some fashion to steal the generation algorithm. PS: If a site uses a text message instead of an app to send a pin that is less secure because SIM duplicating is easier then both the above methods for theft (i dont know the details on how to sim dup but I know no good security team takes sms pins seriously)

What you are: This is stuff like Apple's face id, windows hello, finger scan. Anything that is unique to your physical body that can be scanned to confirm who you are. This is either incredibly difficult or super easy to break depending on how the program is written. for example Face ID had an issue where it could not differentiate between particular ethnicities, also someone (the police) can just hold your phone up to force the unlock. This is usually a good method to use in conjunction with one of the others to make Auth more difficult.

So which one is better? Well each one has its pros and cons which means the most secure method is using more then one. This is called Multi Factor Authentication or MFA for short.

So lets go back to your question, is getting a login link more secure then say remembering a password. Well how secure is access to your email? if your email just requires a username and password to get into, then it is the same security level.

If you have your email setup with MFA where you need to password and pin into it then it is probably more secure then some random sites username password pair.

Also we need to ask questions about the links themselves, do you get the same link each time or is a new one created each request? How are they generated? how long until a link expires? is the link email sent via TLS? Which version of TLS? How are they stored or Are they stored? Is link generation predictable, if I had enough info could i just make my own links for any user?

Honestly I think the biggest benefit of this auth method happens on the website side and less the end user side. This requires less development to create, also they do not need to figure out how to store and keep your passwords, and if they get hacked there are no passwords to be stolen since they literally don't use them. Having passwords stolen is when law enforcement needs to get involved (Law enforcement needs to be contacted in the event any Personally Identifiable Information or PII is stolen). So if they do not use passwords that is one less PII they have in their possession.

Overall passwords are shit and anyone trying to make an effort to not use passwords or to not allow just passwords is at least making an effort to have a better security posture. But if it is actually more secure really depends, passwordless is new territory for a lot of people so its going to have growing pains.

hopefully this answers your question! if you want more clarification let me know.

Oh and Spy Family is life

Setting passwords in the old days: ilovetea Setting passwords NOW: iLoveTea1!

Bandai Namco Shares Tamagotchi Plaza Exclusive Codes

To celebrate the grand release of the Tamagotchi Plaza game for Nintendo Switch, Bandai Namco has decided to share some more exclusive item shop codes! They have shared two types of shopcodes, the first are two special codes to use on the Tamagotchi Plaza game for your Nintendo Switch. The two codes are for Planet Aroma (Pn9s3e), and Planet Tapestry (Ww5hJK)!

Second are Tamagotchi Paradise shop codes that you can enter and get your hands on Prince Tamahiko’s UFO (3560 6107) and Umahiko Outside Toy (2852 0716). The shop codes are actually hidden on the official Tamagotchi Plaza website.

We really appreciate the product tie-in of the Tamagotchi Plaza to the Tamagotchi Uni and Tamagotchi Paradise!

do you have any information on different types of passwords? 👀

Though passwords have existed as long as there's been language, the computer era has resulted in a wide variety of user and computer generated passwords:

Verification Number Passwords (718919, 459101)

Randomly Generated Passwords (ad!4b34!, x4!m&nnC4)

Sequentially Generated Passwords (34567, 891011)

Riddle Passwords (Roosters don't lay eggs, A gold ring)

Embarrassment-Dependent Passwords (Penis, Boob)

Organic Passwords (Al2C6(COO)6·16H2O, WholeFoods)

Vegetarian Passwords (Kriikrik, Geggeghllh)

Vegan Passwords (Eeeee, Hhhhhh)

Quantum Passwords (....., .....,..)

Invisible Passwords ( , )

Bullet Passwords (••••••••••, ••••••)

Famous Passwords (Valley Forge, I am Sher Locked)

Infamous Passwords (Tony Montana, Truman Capote)

Ceci N'est Passwords (Une, Pipe)

US Missile Defense Launch Passwords (12345, qwerty)

Fandom Wiki Edit Passwords (L5b48vfZ?ZP8qaY48vf, most of Pi)

Captain Kirk's Actual Serious Self Destruct Password For The Entire Freakin' U.S.S. Enterprise (000destruct0)

CALLING ALL GRAVITY FALLS NERDS!

I am compiling a Tumblr masterpost of every single password of this present iteration of “thisisnotawebsitedotcom.com”. However, this isn’t a one man job, I’ve spent probably 5 hours decoding and trying passwords to get the present list, but I need YOUR help!

Comment on this post or reblog it (ideally reblog, spreads the message) of any password(s) you’ve found that isn’t on the list! The first person to suggest each one will be credited accordingly! This is a group effort y’all.

If you don’t have any passwords that aren’t on the list, honestly just reblogging helps too! Not only am I compiling all the passwords, but I am taking pictures and videos of every single Easter egg so once this version is down, it will be immortalized.

And, of course, if you want the passwords yourself, check out the post, link here!

BILL CIPHER LORE

Type wellwellwellbeing and click it three times.....you get to see three excerpts from Bill's files at theraprism.

( context : The axolotl sends bill to therapy after season 2 finale )

Type seven eyes to get a picture of one of bill's friends ?......There is a message at the back too ( a warning)

type cipher to see Bill hidden in history ( prolly canon...)

type ad astra per aspera ( ford's journal 1-2 pages about bill's statue)

type robbie ( bill makes an appearance in a photo, also Thompson hates his toxic friend but beggars can't be choosers )

type Dorito ( Wait till the end. You see Bill's true form )

type shave your grandma ( Bill's view on humanity. Its pretty funny)

type stan and click 6 times ( You get to play a game with bill and uncover granule Stan's secret shame)

type dipper and repeatedly click ( Bill basically trolls him. Its funny. Also something at the end after the paper is burnt )

type love for.........well, its almost every fanfic of bill in ao3. ( The image made me do a spit take )

type r34lity ( pics of bill's minions in their new homes.....crptos stands next to a drawing of bill. Dunno what that means....maybe he misses him ? Prolly mocking him, though)

type oroborous ( Sixer had a pet axolotl and Bill wasn't very happy )

type irregular ( Bill's mugshots )

type vallis cineris ( baby bill )

type tourist trap ( bill's in it.....might have to examine this pics further. could be some clue ?)

type bubble and turn the knob ( backward message says :“The Sky is on fire. Everything is burning. How could this happen? You killed us all. Remember us. Someone help, the murderer's name is Bill.” Prolly the dying screams of flatland before bill.....you know.)

type destruction is a form of creation ( rambling of fiddle ford after he peeked into the portal and saw bill.....could be clues in there )

type say baaaa ( Bill acts like Sta- a conman )

type naitsuaf ( you get to make a deal with bill )

type hectoring ( songsposition )

type weirdmageddon ( proof that the people of gravity falls are either in denial of the apocalypse or forgot )

type tantrum ( bill vs time baby )

type scary ( knockoff goosebumps audiobook bill made. Man, Bill and Stanley have a lot in common from the conman angle. They could have been friends....in another timeline *sigh* )

type goodnight sally ( no lore but, its a cool bill t- shirt )

type even his lies are lies ( Bill's pov when sixer still trusted him - bill is talking to his therapist)

type suck it merlin ( bill throughout history )

type black sheep ( Bill's a jerkwad )

type cursed ( Bill is a bad influence )

type card ( another one of bill's 'ventures' )

type one eyed king ( bill tries to hypnotise you )

type forget the past ( its a colour code for the smart ones out there....it would be awesome someone solved it, ig )

type lies ( you see how bill lies to himself......his therapist should take notes)

type monster ( how bill views himself )

type breakup ( shows you the bar bill drank at after ending things with Ford )

type Kubrick ( Bill caught on camera )

type hey nerd ( Bill 'ventures'. Don't buy anything from that catalog !)

type booberry ( welcome to bill's ted talk. nil, he actually gave solid advice if you ignore the projecting )

type fordtramarine ( describes a color only people who have come in contact with bill or other extra dimensional entities can see )

type hotxolotl ( info about bill and his henchmaniacs after his defeat )

type morality ( bill's philosophy )

type you cant kill an idea ( leads to bill's pyramid scheme ciphertology)

type emmaline butter nubbins ( you get to download illustrations of bill from the book of bill without text. Pretty cool )

type piñata ( bill gets beat up by a little girl. )

super quick question, did the password for the first doubles match change with the rival college being renamed?

Ah yes!! It did. Old password didn't make sense anymore. I will update the ko-fi password hints list soon.

“Alvin did incredibly well handling a stressful situation today with very little screaming….compared to how much he usually screams about things like this.”

“Technology is so tough to understand. Why does one account need 4 usernames and passwords?”

“Anyway, the boys now have their Student Portal set up so they can keep tabs on their report cards when school starts up again.”

“I’m going to need a coffee after all that.”

When you're quite proud of a password but you can't tell anyone because it's a password

i really dont get the hate about rule passwords i dont have one myself, but i dont see why people have such a big issue with them- bro, just copy and paste, its rly not that big of a deal? if it makes the person who has the password feel better and more assured if i send it in, why wouldnt i do it? again, its just copy and paste "but im too anxious to send it!!" i have debilitating social anxiety, like up until a year ago i had full on selective mutism everytime i went outside because i was THAT anxious to talk and even exist, so if i can copy and paste some damn phrase im sure you can too 😭 this is a social hobby anyway, at some point youre gonna have to suck it up and… IDK. SOCIALLY INTERACT if anything i dont trust the people who have in their rules "i dont send in rule passwords because of xyz but i promise i read your rules!!!!!!" because everytime a person with that in their rules followed me they CLEARLY didnt read my rules because they blatantly crossed them (i probably sympathize more with people who have rule passwords for that reason, considering the fact that since ive been here 80% of the people who have followed me were breaking my rules as a common example strictly 21+ blogs following me when i am very transparent under 21) so i get how rule passwords can be convenient in making you feel safer about the fact someone read your rules) but, yeah, i just… dont get the hate. not like ive seen any other better argument against them except "its pretentious!!!" "why wouldnt i read their rules?????" and "im too anxious to send it in!!!!!"

Anyone else have a bad memory? I don’t know if it’s from my illnesses or my meds but it’s not just my passwords that are weak 😂