And for an amusing look at how most people actually do choose passwords, check out Your Top 20 Most Common Passwords and The science of password selection. What do you think? Is it easy to remember the other passwords generated here? Do you see some way to improve the algorithm? Is there any merit to this password selection strategy?Īs far as password management goes, I’ve personally found KeePass to be an excellent solution. Will it be just as easy to remember other four-word combinations? I think we’re more likely to remember “correct horse battery staple” for those reasons. But the strip itself is interesting, takes a lot of concentration to understand, and incorporates a visual aid. Sure, a lot of readers will probably have that phrase memorized for a while. The last panel claims that the reader has already memorized “correct horse battery staple”. Exclusions : Specifies the set of characters to exclude in password generation. It’s hard to be convinced about every detail in the strip, but it really had me thinking. An article on implementing a simple password generator class in C. In any case, you can view the JavaScript source code here. This list doesn’t include “battery” or “staple”, so perhaps a better list is still possible. For MS Windows there is PWGen for Windows. Ports to Other Lanugages and Alternatives. Allbery, and then later extensively modified by Olaf Titz, Jim Lynch, and others. Theodore Ts'o email protected Modelled after a program originally written by Brandon S. I scraped a list of 1949 words (close enough) from this site, which is based on the most frequent occurrences in newspapers. Also helpful: Ubuntu's Bugtracker for pwgen. The xkcd strip suggests 11 “bits of entropy” per word, which can be achieved using a list of 211 = 2048 words. For example, “decimalisation contrapuntal assizes diabolism” is not particularly easy to remember, I’d say. Human-memorable passwords are never going to be as secure as completely completely random passwords. That’s important, because the more unusual words are used, the harder the password will be to remember. The pwgen program generates passwords which are designed to be easily memorized by humans, while being as secure as possible. Among many other tools which can be used on the Linux command line to generate random passwords such as openssl, mktemp, od or /dev/urandom the specific and easiest tool designed for this purpose is pwgen. Other generators have popped up online, but unlike most of those, this generator only uses common English words. a sophisticated alternative to the rather rudimentary Word Autotext. In case you missed the strip, here it is: This online password generator serves to generate secure passwords, which are found. (But if you’re just signing up for a kitten video forum, you’re probably safe.) Use at your own peril! I’m not responsible for anything that happens as a result of your password choice. It’s a novel idea, but xkcd stops short of actually recommending such passwords, and so will I.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |