Title: #317: Unify password generation across FreeIPA
@stiaz, SHA-1 DOES NOT add entropy at all, you need the right number of bits in
INPUT for whatever trasformation you use.
@mbasti-rh in what way FIPS is incompatible with base64 encoding ?
@stiaz, spaces may cause issues in some places where passwords are stored in
files or passed (annoyingly) as shell arguments, soit is safer to avoid them in
the final output, and given the way the code deal with space that would also
simplify the random generator and avoid the bias on 1st and last charcter of
See the full comment at
Manage your subscription for the Freeipa-devel mailing list:
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code