When creating very large passwords, is there a certain number that should be followed to create them?
For example, is having a 18 charater password is just as secure as a 20 character password?
Well, I am at a loss for words of trying to ask this question. I just hope somebody somehow understands my jibberish.
We have two concepts here:
1. Password length
2. Password complexity (numbers, letters, symbols, upper/lower case etc.)
As a general concept, a longer password is more secure than a more complex one, because you have increased the number of potential combinations. However, if you use special characters, you can have a similar effect, because you have increased the number of possibilities, and it is very likely that they are not in the Rainbow Tables or brute force character set.
A friend had a password cracker a couple of years ago...............I just created a password with € the Euro currency symbol, as the first character................it got nowhere, as it did not have that symbol in its tables.
So, to answer your question, a 20 character pass is more secure than an 18 character one for the same level of complexity. And the larger the password, the less chance that anyone other than the Feds and the Spooks have Rainbow Tables to crack it.
You are right nihil!... But I prefer using bothe concepts when forming a password. Mixing is the best concept.