Bug#381875: loop-AES key generation requires tiresome typing
Hi Max,
I had a couple of idea while I was typing to generate keys in this
fashion. Here they are in no particular order.
1) Make a game that involves typing,
I was reminded of a game called Daley Thompson's Decathlon, which
involved bashng two keys in turn as quickly as possible, while this
wouldn't be good I thought some sort of game might be. Bear with mw
while I outline an idea,
Implement tetris (hmm, I'm not really volunteering for this bit.)
then the user is making key presses, and is more happy to spend the
time. The progress bar could be inverted to count down, then it is
score as many points as possible before it runs out.
Yeah it's probably not workable, but I thought it was quite fun anyway.
2) Use a source of entropy on another machine.
There are sites (I forget the name, you probably know them), that
provide entropy across the Internet. While I'm not that sure of the
idea, it would solve the problem some what.
3) Allow randomness/key to be retrieved from elsewhere.
Similar to preseeding, either grab a file of a disk or server that has
entropy or the keys. Obviously it needs to be done right, but I think
this should perhaps be done anyway to help with multiple installs. You
can have the file in any format you like (cat /dev/random > file or
actually create GPG encrypted keys), and provide a script to create one
on a running machine.
4) Make d-i harder to use.
If entropy is gathered during the install, it should be made harder, so
that more key presses are required before partman-crypto is reached, and
so increasing the entropy in the pool without the user realising it is
for encryption.
James
--
James Westby -- GPG Key ID: B577FE13 -- http://jameswestby.net/
seccure key - (3+)k7|M*edCX/.A:n*N!>|&7U.L#9E)Tu)T0>AM - secp256r1/nistp256
Reply to: