funsec mailing list archives

Re: xkcd on password strength

From: Larry Seltzer <larry () larryseltzer com>
Date: Wed, 10 Aug 2011 20:58:21 -0400

OK, how about "'Twas brillig and the slithy toves..."

On Wed, Aug 10, 2011 at 7:05 PM, Noon Silk <noonslists () gmail com> wrote:

On Thu, Aug 11, 2011 at 7:39 AM, Larry Seltzer <larry () larryseltzer com>
wrote:

Many years ago I wrote a column advocating "passphrases". A passphrase

like

"I really love white pizza." has many bits of entropy


It consists of many letters but I hardly think it has "many" bits of
entropy. Each letter is fairly dependent on the one prior to it. At
least the XKCD advocates nonsensical sentences, but they are still
words.

No denying passphrases are better, in general, though (and have been
proposed as such for several years now). And it's becoming more
possible to use them all the time; we just need to keep encouraging
programmers to facilitate and encourage it.

--
Noon Silk

Fancy a quantum lunch? http://groups.google.com/group/quantum-lunch?hl=en

"Every morning when I wake up, I experience an exquisite joy — the joy
of being this signature."

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

xkcd on password strength Rob, grandpa of Ryan, Trevor, Devon & Hannah (Aug 10)
- Re: xkcd on password strength Mouse (Aug 10)
  - Re: xkcd on password strength Larry Seltzer (Aug 10)
    - Message not available
    - Re: xkcd on password strength Larry Seltzer (Aug 10)
- Re: xkcd on password strength Drsolly (Aug 11)
  - Re: xkcd on password strength Larry Seltzer (Aug 11)
    - Re: xkcd on password strength Roger Thompson (Aug 11)
    - Re: xkcd on password strength Drsolly (Aug 11)
    - Re: xkcd on password strength Rob, grandpa of Ryan, Trevor, Devon & Hannah (Aug 11)
    - Re: xkcd on password strength Jeffrey Walton (Aug 11)