There is no limit on the length of a passphrase,
Werewolf
werewolf6851 at gmail.com
Wed Oct 22 20:17:23 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Myself, use apg or wapg depending on what OS I'm on at the moment. wapg
is a windows version of apg that'll run from a ubs drive, also run
portable version of gpg from same usb drive, then just encrypt info to
myself about password, url, username, etc. Down side, the secring.gpg
ring stored on it as well. Will have invistigate making a secring only
for decrypting, (sub keys) with the primary sec key stored else where.
And Rockbox.org if your mp3 player supports it's replacement firmware
has a 'keybox' to store usernames;passwords.
- --
Werewolf
=======================================
http://spandex31095.tripod.com/
Skype: Werewolf6851
===== Instant Messenger Accounts ======
Yahoo: lover_of_lycra
ICQ: 304325894
MSN: lover_of_lycra at hotmail.com
AIM: LycraloverWolf
=======================================
GPG key 76E6C1BC with following fingerprint
D508 2C9D B3A9 2F0E E472 95A8 2D8C B9E6 76E6 C1BC
=======================================
Inara: "Come into my shuttle."
Saffron: "You would lie with me?"
(alarms sound)
Inara: "I guess we've lied enough."
--Episode #6, "Our Mrs Reynolds"
Chris De Young wrote:
> Morton D. Trace wrote:
> [...]
>> here are some random 20char ASCII pass phrases
>>
>> bash-3.00$ apg -a 1 -M S -n 20 -m 20
>> ^;@_*-<|./|;&/._;}.!
>> ?<&!\+~&;[//.~_-!|+]
>
> [...]
>
> I do actually use some passphrases like this, though usually with more
> letters and numbers in them (generated with gpg --gen-random -a for
> the most part). I make no attempt to remember them; I keep them in an
> application designed for the purpose (PasswordSafe). Given that,
> there's really no need to limit the length to 20 - since you're never
> going to type it, you may as well use as long a password as your
> application will accept.
>
> The drawback to this is that if my password store is not available to
> me then none of the passwords in it are either. I also have more
> conventional passphrases that I can remember and type, since there are
> always some things you're going to have to produce from memory, and
> there may be some things you don't want to trust to permanent storage
> at all. Pick the right tool for the job.
>
> I find that randomly generated passwords work fine for 90+% of my
> password needs though. :-)
>
> -C
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Portable Thunderbird version 2.0.0.17 (20080914)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkj/bjIACgkQLYy55nbmwbyV1wCgh8JTAT4UgbI5iFFE+t080EXu
KiYAoIC7PGlK4OZYUErxny2EddGXLIs8
=PICm
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list