Package: pwgen Version: 2.06-1+b2 Severity: important -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Hi, I created 813950 passwords with while true; do pwgen -N 50 >> /tmp/passwords; done sorted them and looked for duplicates with uniq -c -d. In theory, there are 26^8=2E11 different possible passwords. But in reality, I got many duplicates: Number of non unique passwords Number of duplications of one password 34841 2 times 5636 3 times 1725 4 times 895 5 times 1045 6 or more times ====== 44142 105146 out of 813950 generated passwords where non-unique. This is around 13 percent or every seventh password. My statistics classes were a few years ago but I don't feel comfortable with this numbers. Regards, Thomas Koch - -- System Information: Debian Release: 7.1 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.10-0.bpo.3-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages pwgen depends on: ii libc6 2.13-38 pwgen recommends no packages. pwgen suggests no packages. - -- no debconf information -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCAAGBQJSUaKUAAoJEAf8SJEEK6Za/9gP/iIqZ2UatsXlkWeFDMZoUrgz hUUpM/zO2Todmx8jydYqpNXP3osFu0ZQmSuurBvcIaxx4jbYhpn+/7Ml6Ljva2Ia WYZ+KCSvP9N7dc0D97K+Tq9KEAMD6gWT9vH/oiJg21fcL3g64axjsYoPTcNTyBSz imv6WZVghyo3Rj4U9odNR12UxgEFrqhjZhM3GL3OVgDCIq6IB/UD4+urwWc7exFn Mj94etvUBev7Gfy1T9ln4ObVzZndGYo5Hju2nPLI/i+r3e87TdpOUqBmlsGOMek7 S4j2j+NnJzmzMxyZPeZrlzs4p8sNbwwUiB/r3K5BsbbUeHmeKmxu8wL0I1Y2zmE6 ETSqwHoVb5KHCLGLDCcikOy0MBQrLFCvBHG/uE9xlqSA9kwp/QmnbiViKoMTNoVz DmyJ9lFjg/KJpbS5RdNa9APRgCrRrcsZmFBWY8ztmBOPQnxUghAB0EZgDWKl87Kd 9xhHkvxNc6wnFyQbmzl9OaqLh2xRDbDXbjyqA+l+zIpw7m9xF/xehOm4LKvHdgBN WuP6cMENyDfx8k7M3OmElAvl3e1KoWH3GPhugn0uEyjUJTDH/n3iht+grgEFB3PN jbum0c0FBj2bcdbYKBWoj3IeLpX0ugDfhayvFbc0puuLMp+u5F3pZ4YB7F46pU/3 bacDuhDLuiNhC7y3EIe/ =L1Yq -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
