Skip to main content

Protect Your Applications with a Strong Password

At, the security of our users is our top most priority, and we take every precaution to make sure your data is protected. However, the level of our security does not matter if you use a weak password to protect your applications. In this guide, we will show you how to properly create a strong password, and better protect your applications.

How to Create a Strong Password

One of the most important aspects of creating a strong password is the length of the password. Even though complexity is needed to a certain degree, the length is the deciding factor of how strong a password is. As you can see from the above image, the time it will take to brute-force crack a password exponentially grows as the length increases.

Below you will find some guidelines for how to create a strong password:

  • A password should be 12 characters or more; complexity is needed to a certain degree, but the length of a password is very important.
  • A password should include a combination of letters (upper and lower-case), numbers, and symbols.
  • A password should never be re-used on other sites or shared with other applications. For example, do not use the same password for SSH and your Radarr, Sonarr, etc.
  • A password should not include personal information like username or anything else that can be easily discovered.
  • A password should not include your username, email address, application or server name.
  • A password should not include any personal information that could be extracted from your social media, e.g. your kids names, pets names, school college names, addresses, etc.
  • A password should not have common words, keyboard patterns, and phrases such as password, 1234, abcd, qwerty etc.
  • A password should never be slightly changed for continued use.
  • A password should never use a word backwards, such as 321drowssap. Reversing a word does not improve the security of a password.

By following the above guidelines, you will be able to create a strong password and properly secure your applications.

Below you will find some general suggestions on how you can further secure your presence online.

  • Use a password manager:
    • Bitwarden is an open source password manager that can be self-hosted.
    • Keepass is a light-weight password manager that is free and open source.
    • Lesspass is a stateless password manager that is free and open source.
  • Use SSH keys - Connect to your service with an SSH key.
  • Adopt the Diceware passphrase method - Create memorable passphrases instead of hard to remember passwords.
  • Passwords should never be shared with another person or saved on a shared device where others might have access.
  • Do not store your passwords in a non-secure location, such as post-its, plain-text document, in-built browser password managers, etc.