Matthew GreenSomebody asked whether dictionary-word passphrases (“correct horse battery staple”, like the ones generated by 1Password) are any good. Short answer: good means different things. Shorter answer: yes!
I’ll talk about why in a thread below.
David Penfold 
Matthieu Weber 🇫🇷/🇫🇮@davep @matthew_d_green
The number of guesses per second depends not only on the attacker's hardware, but also on the algorithm used for hashing the password before storing it. Bitcoin mining hardware is optimised for SHA-256, it would be useless when used against passwords hashed with scrypt or bcrypt.
Keep in mind that the password is a secret shared between you and the computer: do you trust the way the computer stores it? If not, use a high-entropy password.
The number of guesses per second depends not only on the attacker's hardware, but also on the algorithm used for hashing the password before storing it. Bitcoin mining hardware is optimised for SHA-256, it would be useless when used against passwords hashed with scrypt or bcrypt.
Keep in mind that the password is a secret shared between you and the computer: do you trust the way the computer stores it? If not, use a high-entropy password.
@davep @matthew_d_green which is hard to evaluate. For example, if your password is one in a million leaked together, how much time will the attacker be willing to spend on it?
I'm as lazy as the next person, is there a way to balance the convenience of a low-entropy password and the security of a high-entropy one by estimating the probability of my password being cracked if leaked? E.g. what rate of attack should be expected today?