I like this in principle, but many people have a lot of passwords to remember, and reusing one complex password on all of your accounts is bad opsec, which is why I recommend a password manager.
This isn’t great advice because dictionary attacks exist. Password crackers are smart enough to replace letters/numbers switched around too; at least that was the case back in 2009 when I cracked ~20 passwords in half a second.
Just do the correcthorsebatterystaple method from xkcd.
giantblueconifercaddy
Make shit up. Add special characters at the end, and capitalize the first letter, as needed.
I like this in principle, but many people have a lot of passwords to remember, and reusing one complex password on all of your accounts is bad opsec, which is why I recommend a password manager.
This isn’t great advice because dictionary attacks exist. Password crackers are smart enough to replace letters/numbers switched around too; at least that was the case back in 2009 when I cracked ~20 passwords in half a second.