this assumes a dictionary is used. The only problem is some people may fail to use actually uniformly random words drawn from a large enough set of words
see, you didn’t get the whole comic. 4 words out of a dicitionary with 2000 words has more combinations then a single uncommon non gibberish baseword with numeral and puction at the end. as long as the attacker knows your method.
a dicitonary attack will not lower the entropy of 44 bits, thats what the comic is trying to say
then someone uses a dictionary attack and your password gets cracked within minutes
this assumes a dictionary is used. The only problem is some people may fail to use actually uniformly random words drawn from a large enough set of words
see, you didn’t get the whole comic. 4 words out of a dicitionary with 2000 words has more combinations then a single uncommon non gibberish baseword with numeral and puction at the end. as long as the attacker knows your method.
a dicitonary attack will not lower the entropy of 44 bits, thats what the comic is trying to say