Best way to make an uncrackable passphrase, using What3words

km1500

using three random.words is secure, but not as secure as you might think...

https://www.pentestpartners.com/security-blog/three-word-passwords/

400ixl

theoldmiser said:

Why not just use my simple method, and write the passwords in a password book that you keep on your desk? The ones you use every day, you will soon learn off by heart. (I have about five I use every day, and they're all really long, but easy to remember after I've typed them in about twenty times.)

Because it is impractical unless you only ever want to access from home. Otherwise you have to take the password book with you and it is vulnerable to loss or theft and it is then an unencrypted list of all your usernames and passwords.

I assume you are using a unique email address as well as unique passwords for every site.

Using a secure encrypted password manager like Bitwarden is far more of a solution. You can still use your three word approach if you so wish (it isn't a bad solution, but there are better) within the password manager.

If you only ever stay at home and your password book never has to leave the home then there it is better than nothing. provided you never get burgled.

You are finding a solution for a problem the world solved without you in a better way.

bob2302

IMO the only merit in using W3W is that it allows you to use the place as a way to regenerate the password. If you pick some featureless point in the sea it's just a low-quality random word generator, using a relatively small set of words.