Re: Root password strength

To: debian-user@lists.debian.org
Subject: Re: Root password strength
From: Michael Kjörling <2695bd53d63c@ewoof.net>
Date: Wed, 20 Mar 2024 18:10:21 +0000
Message-id: <[🔎] 3c0f9fa9-bd7a-4933-81df-8caed978ec77@home.arpa>
In-reply-to: <[🔎] 87v85gzxzp.fsf@daath.pimeys.fr>
References: <[🔎] CAJt2aJW8na7_gkqGi8vpjiMub4TT+Mu__PfbnPYXfGwbn9+wnQ@mail.gmail.com> <[🔎] 874jd10xh1.fsf@daath.pimeys.fr> <[🔎] 8734sk6gl2.fsf@sugarbit.com> <[🔎] 87v85gzxzp.fsf@daath.pimeys.fr>

On 20 Mar 2024 17:07 +0100, from peb@debian.org (Pierre-Elliott Bécue):
> Let's stop to overcomplexify, the best course of action for passwords
> you need to remember are passphrases, and to this matter, Randall nailed
> the matter properly.

If you're referring to https://xkcd.com/936/ I believe Diceware
predates that comic by over 15 years. Reinhold's page has a copyright
going back to 1995; the XKCD comic first appears in the Internet
archive in 2011. Even the domain xkcd.com wasn't registered until
2003, roughly coinciding with the Internet Archive's first capture of
Reinhold's page at its current URL.

The XKCD comic isn't bad, but it completely ignores the issue of just
_how_ the constituent words in the passphrase are chosen. Diceware
_explicitly_ addresses that.

-- 
Michael Kjörling                     🔗 https://michael.kjorling.se
“Remember when, on the Internet, nobody cared that you were a dog?”

Reply to:

References:
- Root password strength
  - From: Jan Krapivin <daydreamer199005@gmail.com>
- Re: Root password strength
  - From: Pierre-Elliott Bécue <peb@debian.org>
- Re: Root password strength
  - From: John Hasler <john@sugarbit.com>
- Re: Root password strength
  - From: Pierre-Elliott Bécue <peb@debian.org>

Prev by Date: Re: Root password strength
Next by Date: Re: Root password strength
Previous by thread: Re: Root password strength
Next by thread: Re: Root password strength
Index(es):
- Date
- Thread