|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Daniel Hartmeier (daniel
reichardt.ch)Date: Fri Feb 02 2001 - 04:08:27 CST
On Fri, 2 Feb 2001 15:18:10 +1100 (EST), you wrote:
> Yes. In my little corner of the real world, all the Unix machines have
> different, randomly generated, horrible root passwords. I generate
> them using "jot" & "rs" on an OpenBSD machine and store them in a Palm
> using Cipher (http://www.klawitter.de/), and hardcopies are kept in a
> locked safe.
jot uses random(3), which is a pseudo-random number generator with a
period of approx. 16*(2^31-1), hence the entropy of your password is
much lower than the 128 bits blowfish uses. If you're going as far as
entering such long passwords, you might as well create them with better
entropy, like using "openssl rand -rand /dev/urandom" or Diceware. :)
http://www.stack.nl/~galactus/remailers/passphrase-faq.html#121
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]