On Tue, Aug 04, 2009 at 10:39:38AM -0600, Modulok wrote:
But I'm also looking for a good way to generate high quality crypto
keys. In the later case, the data being protected are disk images of
clients...mountains of sensitive data. These will be on USB
keys, and thus do not need to be
On Monday 03 August 2009 18:28:52 Modulok wrote:
I wrote a python script which uses /dev/random, and hashes the output
with sha256. I then truncate the output to the desired length.
Blasphemy! According to the superstitious password crowd my passwords
are not very secure ... maybe.
They
On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
It is very easy to generate hard-to-guess semi-random passwords:
openssl rand
On Tue, Aug 04, 2009 at 09:52:21AM +0200, Roland Smith wrote:
On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
It is very easy to
Anton Shterenlikht wrote:
On Tue, Aug 04, 2009 at 09:52:21AM +0200, Roland Smith wrote:
On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
Good call on the hashing, reducing the quality of the passwords, Kurt.
The hash generated passwords are for online accounts, as
auto-generated initial passwords and such.
But I'm also looking for a good way to generate high quality crypto
keys. In the later case, the data being protected are disk
On Mon, 3 Aug 2009 22:20:50 -0800
Mel Flynn mel.flynn+fbsd.questi...@mailing.thruhere.net wrote:
On Monday 03 August 2009 18:28:52 Modulok wrote:
I wrote a python script which uses /dev/random, and hashes the
output with sha256. I then truncate the output to the desired
length.
As I understand it I would have to double the length of a hashed
password for it to be as secure as an un-hashed one, as each pair of
characters represent one byte. Aye?
-Modulok-
On 8/4/09, RW rwmailli...@googlemail.com wrote:
On Mon, 3 Aug 2009 22:20:50 -0800
Mel Flynn
On Mon, 3 Aug 2009 20:28:52 -0600
Modulok modu...@gmail.com wrote:
However, wouldn't hashing bytes from /dev/random be quite secure? The
hash function would cover any readily apparent patterns, if they were
found to existed.
That's fine, the only issue is that hex digits lead to long
On Tue, 4 Aug 2009 10:42:22 -0600
Modulok modu...@gmail.com wrote:
As I understand it I would have to double the length of a hashed
password for it to be as secure as an un-hashed one, as each pair of
characters represent one byte. Aye?
I wouldn't put it quite like that, it's the hexadecimal
On Mon, 3 Aug 2009 22:34:27 -0400
Bill Moran wmo...@potentialtech.com wrote:
Modulok modu...@gmail.com wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
You could just use apg ...
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
There seems to be a lot of superstition about entropy. People have
come up with quite creative ways at generating passwords using
everything from
Modulok modu...@gmail.com wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
You could just use apg ... it's in the ports.
--
Bill Moran
http://www.potentialtech.com
On Mon, Aug 3, 2009 at 10:28 PM, Modulokmodu...@gmail.com wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
Have a look at jot(1).
--
Glen Barber
On Mon, Aug 3, 2009 at 19:28, Modulokmodu...@gmail.com wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
Gah. Define secure.
What is your use case?
Does it involve humans remembering
On 3-Aug-09, at 10:28 PM, Modulok wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
Take a look at pwgen (it's in ports). If you're really needing *very*
secure passwords, it makes more
16 matches
Mail list logo
