On Tue, Aug 04, 2009 at 10:39:38AM -0600, Modulok wrote:
> But I'm also looking for a good way to generate high quality crypto
> keys. In the later case, the data being protected are disk images of
> clients...mountains of sensitive data. These will be on USB
> keys, and thus do not need to be memo
On Mon, 3 Aug 2009 22:34:27 -0400
Bill Moran wrote:
> Modulok wrote:
> >
> > I need a way to generate a lot of secure passwords. So, I read all
> > about it. Either people are getting way carried away, or I'm missing
> > something...
>
> You could just use apg ... it's in the ports.
By the l
On Tue, 4 Aug 2009 10:42:22 -0600
Modulok wrote:
> As I understand it I would have to double the length of a hashed
> password for it to be as secure as an un-hashed one, as each pair of
> characters represent one byte. Aye?
I wouldn't put it quite like that, it's the hexadecimal representation
On Mon, 3 Aug 2009 20:28:52 -0600
Modulok wrote:
> However, wouldn't hashing bytes from /dev/random be quite secure? The
> hash function would cover any readily apparent patterns, if they were
> found to existed.
That's fine, the only issue is that hex digits lead to long passwords
for a given s
As I understand it I would have to double the length of a hashed
password for it to be as secure as an un-hashed one, as each pair of
characters represent one byte. Aye?
-Modulok-
On 8/4/09, RW wrote:
> On Mon, 3 Aug 2009 22:20:50 -0800
> Mel Flynn wrote:
>
>> On Monday 03 August 2009 18:28:52
On Mon, 3 Aug 2009 22:20:50 -0800
Mel Flynn wrote:
> On Monday 03 August 2009 18:28:52 Modulok wrote:
>
> > I wrote a python script which uses /dev/random, and hashes the
> > output with sha256. I then truncate the output to the desired
> > length. Blasphemy! According to the superstitious passw
Good call on the hashing, reducing the quality of the passwords, Kurt.
The hash generated passwords are for online accounts, as
auto-generated initial passwords and such.
But I'm also looking for a good way to generate high quality crypto
keys. In the later case, the data being protected are disk
Anton Shterenlikht wrote:
> On Tue, Aug 04, 2009 at 09:52:21AM +0200, Roland Smith wrote:
>> On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
>>> I need a way to generate a lot of secure passwords. So, I read all
>>> about it. Either people are getting way carried away, or I'm missing
>>> s
On Tue, Aug 04, 2009 at 09:52:21AM +0200, Roland Smith wrote:
> On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
> > I need a way to generate a lot of secure passwords. So, I read all
> > about it. Either people are getting way carried away, or I'm missing
> > something...
>
> It is very e
On Mon, Aug 03, 2009 at 08:28:52PM -0600, Modulok wrote:
> I need a way to generate a lot of secure passwords. So, I read all
> about it. Either people are getting way carried away, or I'm missing
> something...
It is very easy to generate hard-to-guess semi-random passwords:
openssl rand -ba
On Monday 03 August 2009 18:28:52 Modulok wrote:
> I wrote a python script which uses /dev/random, and hashes the output
> with sha256. I then truncate the output to the desired length.
> Blasphemy! According to the superstitious password crowd my passwords
> are not very secure ... maybe.
They a
On 3-Aug-09, at 10:28 PM, Modulok wrote:
I need a way to generate a lot of secure passwords. So, I read all
about it. Either people are getting way carried away, or I'm missing
something...
Take a look at pwgen (it's in ports). If you're really needing *very*
secure passwords, it makes more
On Mon, Aug 3, 2009 at 19:28, Modulok wrote:
> I need a way to generate a lot of secure passwords. So, I read all
> about it. Either people are getting way carried away, or I'm missing
> something...
Gah. Define "secure".
What is your use case?
Does it involve humans remembering them, or not?
W
On Mon, Aug 3, 2009 at 10:28 PM, Modulok wrote:
> I need a way to generate a lot of secure passwords. So, I read all
> about it. Either people are getting way carried away, or I'm missing
> something...
Have a look at jot(1).
--
Glen Barber
___
freebs
Modulok wrote:
>
> I need a way to generate a lot of secure passwords. So, I read all
> about it. Either people are getting way carried away, or I'm missing
> something...
You could just use apg ... it's in the ports.
--
Bill Moran
http://www.potentialtech.com
__
15 matches
Mail list logo