Conversation
Notices
-
Mike Gerwitz (mikegerwitz@social.mikegerwitz.com)'s status on Wednesday, 18-Oct-2017 01:54:08 EDT Mike Gerwitz Nicholas Weaver on KRACK:
https://www.lawfareblog.com/dont-worry-about-krack
So, don't worry about the vulnerability because your password is probably already worthless and can be brute-forced. What the hell? While this _is_ realistic, it is dangerously dismissive and promotes the completely wrong attitude toward security. There's not even a mention of ways to improve your password security---instead, it almost makes people seem silly for having random passphrases by calling them a "cat's hairball".
How about some useful advice that'll actually help the reader rather than make them think "oh, okay, insecure as usual; carry on": choose a better password, and update your shit.