Traveling without a secret key
Stefan Claas
sac at 300baud.de
Wed Jul 8 21:40:48 CEST 2020
Ryan McGinnis via Gnupg-users wrote:
> Went to a security seminar where I asked a random FBI agent after a presentation about passwords; he said just to get into
> their personal terminals it was something like 17 characters minimum and that the passwords were randomly generated letters
> and numbers and symbols and that they were changed fairly often. If you're trying to protect something from offline brute
> forcing and the password is the weak point, you're probably best off coming up with a really long randomly generated diceware
> phrase (7 words ought to be safe) https://www.rempe.us/diceware/#eff.
Thanks for the info! Regarding diceware, I looked into it long ago, but must admit I am not good at remembering many word
sequences, for many strong passwords, even if diceware words are easy once.
Regards
Stefan
--
my 'hidden' service gopherhole:
gopher://iria2xobffovwr6h.onion
More information about the Gnupg-users
mailing list