[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Happy 2022 Winter Solstice!

To: ALAN PECK <http://www.comcast.net/~peckalan>
Subject: Re: Happy 2022 Winter Solstice!
From: http://dummy.us.eu.org/robert (Robert)
Date: Fri, 30 Dec 2022 18:05:40 -0800
Keywords: .

 > From: ALAN PECK <http://www.comcast.net/~peckalan>
 > Date: Fri, 30 Dec 2022 17:13:28 -0500 (EST)
 >
 > Maybe you can make a judgement as to whether this is for real:
 > https://www.codeproject.com/Articles/5348966/No-need-to-Store-Encrypt-or-Memorize-Passwords
 > 
 > Good talking with you!
 > Alan

This system is not foolproof.  Even if a master password is fantastic,
people end up reusing this password; and that's where the problem begins.
Instead of depending only upon a master, at the very least, there should
be some kind of salt or key file which will mix things up a bit.  (Keepass
allows a key file, and I always use this feature; of course, you need to
keep the key file hidden, which is a bit of a pain.)

Also, you'll want to use a memory-hard PBKDF which is immune to GPU
attacks; these algorithms don't seem to use these.

Follow-Ups:
- Re: Happy 2022 Winter Solstice!
  - From: ALAN PECK

Prev by Date: Re: Your automatic payment status has changed (fwd)
Next by Date: Re: CA population loss
Previous by thread: Re: Protect Your Family This Flu Season (fwd)
Next by thread: Re: Happy 2022 Winter Solstice!
Index(es):
- Date
- Thread