oss-sec mailing list archives
Re: CVE Request: pwgen
From: Solar Designer <solar () openwall com>
Date: Tue, 28 May 2013 05:47:09 +0400
On Tue, May 28, 2013 at 01:33:48AM +0000, Michael Samuel wrote:
The default mode of this program generates extremely low entropy passwords - It is probably worth changing the default to "secure" mode and removing phonemes mode, to avoid putting users at risk.
Yes. You have seen the thread on pwgen from last year, right? - http://www.openwall.com/lists/oss-security/2012/01/22/6 (Use the "thread-prev" link for more messages from that thread.) Alexander
Current thread:
- CVE Request: pwgen Seth Arnold (May 24)
- Re: CVE Request: pwgen Kurt Seifried (May 24)
- Re: CVE Request: pwgen Michael Samuel (May 27)
- Re: CVE Request: pwgen Solar Designer (May 27)
- Re: CVE Request: pwgen Michael Samuel (Jun 05)
- Re: CVE Request: pwgen Michael Samuel (May 27)
- Re: CVE Request: pwgen Kurt Seifried (May 24)