[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: One-line password generator

On 2017-08-30, Thomas Schmitt <scdbackup@gmx.net> wrote:
> Hi,
>
> Gene Heskett wrote:
>> Well, that easy to remember method just went down in flames.  Sigh...
>
> That's the first diffuse but significant wisdom we found in this thread:
>
> If you can memorize it without the help of publicly knowable details of
> your life, then it's too easy to enumerate with nowadays' hardware.
>

He should've salted it a little.

> Another wisdom is that Theodore T'so, a well reputed and mindful person
> who is also the kernel maintainer of "RANDOM NUMBER DRIVER", flatly thinks
> that /dev/random is legacy as soon as the system is fully up.

That's because he thinks entropy is a property of the process that
generates the output and not of the output itself (yes, I spoke with Ted
over lunch). Therefore the idea that it can be "depleted" or "used up"
is not right. It's not even wrong (with apologies to Wolfgang Pauli).

-- 
"The world breaks everyone and afterward many are strong in the broken places.
But those that will not break it kills. It kills the very good and the very
gentle and the very brave impartially. If you are none of these you can be sure
it will kill you too but there will be no special hurry." *A Farewell to Arms*
Reply to: