This is cute, but I'm dubious. It generated "y3aEmic8B217" as my password. Kid just happened to hit the shift key while also pressing E and then B? It looks a little too random to me. When I pound on the keyboard, I get results that look more like "fjlsd;lasf".
<a href="https://www.toddlerpassword.com/privacy" rel="nofollow">https://www.toddlerpassword.com/privacy</a><p>Why does this need analytics and thus tracking cookies? I'm genuinely asking. What kind of data does this even need tracking?
Just to point out that human "smashing keyboard" is far from random.<p>Even if it weren't due to the keyboard's fixed layout (between two smashes), it's largely because of our non-random nature — a human being cannot reliably output random objects even in thought / speech. Don't ask me why (I don't think anyone knows or could prove it theoretically) but it's been verified countless times (war secrets help make such research important).<p>We're at best capable of pseudo-randomness mathematically. Some controversial neuroscience even places us far into the deterministic scope. A child is probably way more determined than an adult for that matter, due to a much simpler schema of reality, with 'weird obsessions' (e.g. it feels nice to smash the same place over and over again, our brain is quick to play games like that, such as walking on specific tiles to avoid the lava in the street).<p>I wouldn't trust most animals to output randomness. We have crypto packages suited for that purpose. ;-)
I am inclined to not trust the story here. Too many shady things going on. The passwords just seem like they are generated algorithmically so the whole underlying premise seems to be bs. The images can be found on a stock image site, they are asking for money and it's all done in a very shady way where the password is being generated serverside making it inherently insecure as a generator.<p>Seems like someone is using the imagery of a cute child to make a few extra bucks, at best.
Poor Max -- his dad's a developer, but he still has to work as a typist just to afford clean diapers, food, and toys. Everybody donate to this poor child's cause!<p>Joking aside, will I break this if I request too many characters? Does it loop after running out of Max's prior input? Is Max really just a script?
From experience with my kids when they were toddlers, they would type what they saw. I was kind of freaked out when my son typed "WARNING". They watched VHS tapes or DVDs that began with that message.
My toddler provides a whole security suite- she will set your critical files to readonly (by pulling all the keys of your keyboard), airgap your network (by playing with the power strip its connected to), and virus detection (by beginning to emit screams and snot as soon as she catches one) :)
I don't know what they're doing with the site design but it's completely devoid of text for me even with my adblocker turned off. I thought that was part of the gimmick at first until I realized there is text displayed for a fraction of a second before it finishes loading.
This is cute, but I'd rather use the very secure password generated by experts at <a href="https://mostsecure.pw/" rel="nofollow">https://mostsecure.pw/</a>
Pretty entertaining. But if you want people to feel any more confident in your generator, you need to have entropy metrics.<p>I have a feeling toddlers might be worse than other entropy sources.
This is great. My daughter does this for me too:<p><a href="https://twitter.com/lukevers_/status/1181217729216425984" rel="nofollow">https://twitter.com/lukevers_/status/1181217729216425984</a>
<a href="https://twitter.com/lukevers_/status/1181217968287559680" rel="nofollow">https://twitter.com/lukevers_/status/1181217968287559680</a>
So, this is fun idea.<p>I have a toddler, so I identify. She constantly mashes my laptop keyboard, often deleting large blocks of code or typing gibberish into slack.<p>My biggest revelation here is how terrible the new MBP keyboard is. Just a bit of keyboard mashing and many keys are rendered useless. They require some gentle massaging to get back to a semi working state.
This is absolutely not secure. If he let the kid type away for an hour and is selecting sub-strings from it, then all the passwords generated from this exist in a file that can be ex filtrated given enough requests to his server.
I tend to type guid in duckduckgo. <a href="https://duckduckgo.com/?q=Guid" rel="nofollow">https://duckduckgo.com/?q=Guid</a><p>Bad idea?
hmmm interesting... was this site based on this post from '17? <a href="https://artur.co/blog/07-30-17-preschooler-secure-password-technique" rel="nofollow">https://artur.co/blog/07-30-17-preschooler-secure-password-t...</a>