On 13.11.2016 14:38, Jason A. Donenfeld wrote:
On Sun, Nov 13, 2016 at 2:36 PM, Michael Hoff <[email protected]> wrote:Hi Jason,sounds like a good way to circumvent the current shortcoming. I still think as long as password generation is a feature of pass, this use case should be supported by the default application.Fair enough. Can you get this feature into upstream pwgen? Then I can expose it pretty easily in pass without changing dependencies and packaging.
I don't think that `pwgen` is the suitable application for this. Something like ```apg -m $length -x $length -a 1 -M SNCL -n 1 -E $evilchars``` could be a drop-in replacement.One could add the possibility to configure "SNCL" to modify the usage of whole charsets. The feature asked for can than be easily implemented by just disallowing (-E) symbols which should not be used. The user supplies a list of $symbols and then $evilchars = $all_symbols - $symbols should do the rest.
But as I'm not an expert on those tools nor security stuff, what do you think?
Kind regards, Michael -- S/MIME and PGP (0xA79D31C0) supported https://michael-hoff.net
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Password-Store mailing list [email protected] http://lists.zx2c4.com/mailman/listinfo/password-store
