On Wednesday 30 August 2017 09:47:35 Thomas Schmitt wrote: > Hi, > > Gene Heskett wrote: > > Well, that easy to remember method just went down in flames. > > Sigh... > > That's the first diffuse but significant wisdom we found in this > thread: > > If you can memorize it without the help of publicly knowable details > of your life, then it's too easy to enumerate with nowadays' hardware. > > > Another wisdom is that Theodore T'so, a well reputed and mindful > person who is also the kernel maintainer of "RANDOM NUMBER DRIVER", > flatly thinks that /dev/random is legacy as soon as the system is > fully up. > > The reason why this is still not fully reflected by the man page is > not yet uncovered.
Maybe a wee bit of security by obscurity? There is that I think in everyones thinking on this subject. They don't want to price the farm so cheap that it will actually sell. > It might have its roots in the sloppy mathematical discussion style of > people like those quoted in > https://www.2uo.de/myths-about-urandom/#experts > except, i'd say, Thomas Pornin who is quoted with > "indistinguishable from true randomness, given existing technology." > Probably the others have moments of more exactness, too. But at least > in their quotes this is not to see. > > > An important argument is that of the armored safe with cardboard > backplane. > > If you have a really good password and really manage to memorize it in > your brain alone, then there are other real life methods to get to > your private stuff. > Insofar i confess that all my resisting and objecting is more sport > than real business. My aplogies to all annoyed bystanders. I will do > it again. > Please do. > > Have a nice day :) You too. > Thomas Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) Genes Web page <http://geneslinuxbox.net:6309/gene>
