Home page logo

oss-sec logo oss-sec mailing list archives

Re: Re: pwgen: non-uniform distribution of passwords
From: Henri Salo <henri () nerv fi>
Date: Tue, 17 Jan 2012 21:58:25 +0200

On Tue, Jan 17, 2012 at 11:51:31PM +0400, Solar Designer wrote:
It was just pointed out to me off-list that the man page for pwgen
specifically mentions that this kind of passwords "should not be used in
places where the password could be attacked via an off-line brute-force
attack."  I had missed that detail or at least I did not recall it.

This kind of documentation certainly mitigates the problem to some extent.

I'll bet most of the end-users will also miss this if you did.

- Henri Salo

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]