Michael Torrie wrote: > Like many of you I use a password manager these days. It's pretty > slick. But really it shows the absurdity of the situation. Instead of > passwords we should all just use private/public keypairs and store the > private keys in a digital wallet. Forget this password garbage with > it's 50-70 bits of entropy. Let's go for 2048-bit keys and be done with > it, if we're going to require the use of password managers.
Yes, and that's easy e.g. with SSH. And in theory it's easy with SSL/TLS. But support for client certs in browsers really suck (try to change the login once you've chosen a client cert without closing the browser). Ciao, Michael. -- https://mail.python.org/mailman/listinfo/python-list