Reviewed version:https://www.youtube.com/watch?v=8n6ubzCzZ5IAnd for those who don’t want enter on YT, the original post and pdf.https://digitalcontentnext.org/blog/2018/08/21/google-data-collection-research/
So we all hear to use them because they are good for being reaching a decent tradeoff between human readable and most difficult to machine crack of the easy to remember category. But keep in mind, most difficult to crack of the human readable category, that’s like being the smartest kid with down syndrome. Cracking passphrases by just stringing together 5 words seems really easy. For example BabyDontDanceLikeThat isn’t a 21 character password, it’s just a simple 5 letter passphrase with Caps for first word. And most all passphrase generators don’t use words like ubiquitous, mendacious or polyglottal, they only use like the top 2000-3000 most common words.What I’m getting at is that passphrase crackers obviously aren’t going to run through all character permutations but will try to crack passphrases by combining words and also common passphrase formats (spaces, no spaces, Camel Case, all lowers, numbers/symbols between, numbers/symbols at end). Doesn’t it appear that passphrases are just overly hyped, especially since that xkcd comic kind of explain that they were uncrackable due to being so long (while glossing over the fact that a non dumb cracker would exploit the format of passphrases) ?
i am using Protonmail with Protonmail Bridge, so that I can use Thunderbird to sort my mail into folders automatically.I found this cool Add-on called quickFilters, and I think there are others, that make it even easier to sort emails.But on the download page, there is a “Permissions” link that scares me. “Please note that this add-on uses legacy technology, which gives it access to all browser functions and data without requesting your permission."Can Add-ons in general take all your emails and data just like Gmail does?