There is no limit on the length of a passphrase,

Werewolf werewolf6851 at
Wed Oct 22 20:17:23 CEST 2008

Hash: SHA1

Myself, use apg or wapg depending on what OS I'm on at the moment. wapg
is a windows version of apg that'll run from a ubs drive, also run
portable version of gpg from same usb drive, then just encrypt info to
myself about password, url, username, etc.  Down side, the secring.gpg
ring stored on it as well.  Will have invistigate making a secring only
for decrypting, (sub keys) with the primary sec key stored else where.

And if your mp3 player supports it's replacement firmware
has a 'keybox' to store usernames;passwords.

- --

  Skype: Werewolf6851
===== Instant Messenger Accounts ======
 Yahoo: lover_of_lycra
   ICQ: 304325894
   MSN: lover_of_lycra at
   AIM: LycraloverWolf
 GPG key 76E6C1BC with following fingerprint
D508 2C9D B3A9 2F0E E472  95A8 2D8C B9E6 76E6 C1BC
Inara: "Come into my shuttle."

Saffron: "You would lie with me?"

(alarms sound)

Inara: "I guess we've lied enough."
				--Episode #6, "Our Mrs Reynolds"

Chris De Young wrote:
> Morton D. Trace wrote:
> [...]
>> here are some random 20char ASCII pass phrases
>> bash-3.00$ apg  -a  1  -M  S  -n  20  -m  20
>> ^;@_*-<|./|;&/._;}.!
>> ?<&!\+~&;[//.~_-!|+]
> [...]
> I do actually use some passphrases like this, though usually with more
> letters and numbers in them (generated with gpg --gen-random -a for
> the most part). I make no attempt to remember them; I keep them in an
> application designed for the purpose (PasswordSafe).  Given that,
> there's really no need to limit the length to 20 - since you're never
> going to type it, you may as well use as long a password as your
> application will accept.
> The drawback to this is that if my password store is not available to
> me then none of the passwords in it are either. I also have more
> conventional passphrases that I can remember and type, since there are
> always some things you're going to have to produce from memory, and
> there may be some things you don't want to trust to permanent storage
> at all. Pick the right tool for the job.
> I find that randomly generated passwords work fine for 90+% of my
> password needs though.  :-)
> -C
> ------------------------------------------------------------------------
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at
Version: GnuPG v1.4.9 (MingW32)
Comment: Portable Thunderbird version (20080914)
Comment: Using GnuPG with Mozilla -


More information about the Gnupg-users mailing list