Re: [firewall-wizards] Re: Off-topic: Password and PIN generation

[Magosanyi Arpad <mag () bunuel tii matav hu>]

A levelezőm azt hiszi, hogy M. Dodge Mumford a következőeket írta:
> From doc/faq.txt of Crack 5.0:
>
> From the Security FAQ:
>  >Q.16 How can I generate safe passwords?
>  >
>  >You can't.  The key word here is GENERATE.  Once an algorithm for
>  >creating passwords is specified using upon some systematic method, it
>  >merely becomes a matter of analysing your algorithm in order to find
>  >every password on your system.

I guess the boundary conditions aren't defined here, or there is 
something I have greatly overlooked.

I thought that whenever I take a sufficiently random seed a with a 
sufficiently good random generator, and generate a sufficiently long
password with them, I am okay.
I guess that using 'dd if=/dev/random bs=512 count=1 |uuencode pass',
and taking a line from its output without the leading 'M',
I have a better password than I can come out with by simply hitting the 
keyboard randomly.

I guess the boundary condition was: "from the username".

What did I overlook?

-- 
GNU GPL: csak tiszta forrásból