From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 3A642138334 for ; Sun, 10 Feb 2019 16:27:41 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 31C87E09B4; Sun, 10 Feb 2019 16:27:35 +0000 (UTC) Received: from mail-ot1-x32f.google.com (mail-ot1-x32f.google.com [IPv6:2607:f8b0:4864:20::32f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id AF09DE0960 for ; Sun, 10 Feb 2019 16:27:34 +0000 (UTC) Received: by mail-ot1-x32f.google.com with SMTP id e24so13636564otp.11 for ; Sun, 10 Feb 2019 08:27:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:openpgp:autocrypt:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=GkU+BHuFHN+IpnayisZXejbhbHwCub4xlfKq6Hgm5XM=; b=C7H7r4SIEO1UR3O5m+m0fCefS3Iy/eu1Mv+aaYI/P+Yl8AwhHT4IDOLfE6buDRdLbE y/+mXwN/2nn3LYc2/3wPDu5KsojltsDlh4IHnQJKlgCYG6oBVaBITO8NeNSIAnC2c6qL llL8s0drre+CQMF7kL5tLyqU1JCx0HR/1bBddfPz8jVQk0/4Keflw586k8WKu4SUMycc 382zBbzbPKcHVyGPYkp+OpXGC5m2ZHCH4kclwM39k3UY1Kd85FajGyZh9bFdONQjCWo8 9lchRoiIfk6+/cm2T6fSvmhP3hIyiGR2kmhb1LQ1uY7rwDl9eP6gHhBV3+cm+ztVAm90 b7sQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:openpgp:autocrypt :message-id:date:user-agent:mime-version:in-reply-to :content-transfer-encoding; bh=GkU+BHuFHN+IpnayisZXejbhbHwCub4xlfKq6Hgm5XM=; b=ViDZ4qAe1XSZWSVu1ZHptWMSYhASnVTDwJtcYKfuja/bq2CccY+0k4d2Hpu65N6Vx8 CQ2dFHHE3w9uZrISO84AF47Wj2uztY9gMeKKPtutZwm2HG+GVnhFxYxhruHy2ld1jL87 xWPK/xWVYOVskclscyTGeEk7ZkAOnzl/Z2g9txx/N+o6MWn4DXSbAUxJketA6W4xIg3U kytubwtn0HvQUn+v9ChNZ8Dy5PyU4qRb5synX//ViYSwwCC1kzqkthWDGKThwKZqAipK DcAJdOGtE9VscIjwkYMkBPh30ReJDIhbY6Hh1bJt0ErRKaqNXTy4HN/lUT/qeIIZvODP eBMg== X-Gm-Message-State: AHQUAuaVr3+3dQUDBlF6k+oQN6OL9r2rl2dlkM1z+U8daaoVmespMNn8 ClAWARPSXhmRO7qosFB5QNCzHkCh X-Google-Smtp-Source: AHgI3Ia45eRPrdp8pSn1kiJAHQ8kOExtk3Lp0l5eEENTXQQFVwpJLf63vhkxqqGElNRIB37VLYGAxA== X-Received: by 2002:a9d:760f:: with SMTP id k15mr18929552otl.149.1549816053597; Sun, 10 Feb 2019 08:27:33 -0800 (PST) Received: from [192.168.2.5] (adsl-68-19-236-144.bna.bellsouth.net. [68.19.236.144]) by smtp.gmail.com with ESMTPSA id k38sm3518431otk.67.2019.02.10.08.27.32 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 10 Feb 2019 08:27:33 -0800 (PST) Subject: Re: [gentoo-user] Coming up with a password that is very strong. To: gentoo-user@lists.gentoo.org References: <8d027455-f210-c399-f5a7-bfb05692cc5f@gmail.com> <20190210191213.f143979ac631765a9dbb6837@gentoo.org> From: Dale Openpgp: preference=signencrypt Autocrypt: addr=rdalek1967@gmail.com; prefer-encrypt=mutual; keydata= mQINBFxc7MgBEAC+zrgEdqJJiDe/UDAB+ScmferXWfJTVjbVT2T4DQ7jiLrgP9aNUo1HioNF mrU3JPOCR32gvZyTbY1+niO5+VSo/+pSqQ785h6ZDj1klMkrg6tEzGnf2MNBpBj4houZwxQ+ WDKKTg2M9F+lv8wTIdR/JQn+hSviktLMtrghQlyLhpapsLXWLA6gMFebpQYwxUwemvan8ddX lQvJe9FGyFYvBi0dp1gl10F2O+DVZJxvX8xkX+yImVlhVJiC31gXHRcj+Qlo7gprlU7TIieF Uow6/ZvYKJ26pztVdFCg5w0rMJkF/x8Zd4A6wnuptiAPmWaQ1+YKgYDonbDUgwqFSx5/lN5z DGZ4LlioxeUTTPVvZsqBIeDz6jNFA583OYbo1/S26dqrvTFf2DKlsvoDpVfAhNlwJPjoixs0 X3FNqPv+M10n4kq5Iz7Q9E3O4s/nfFIYGocEslVka7zZPkXSaHbsn+KJlY8XV6qxtCEdh0/V XX1+1aU2J74M0JikWhpwxTZ1dP5aOyWSPPEgFFIRW6xwwC02SoRH9a7mggfGYp/YjPlONNaT SCL8sgRfvmq3D0XTbLyTjSbExxkfKDmbePQagawDE3TlI/oivHf1JaAcbwMb3LZuU4TGcOIl 5D+x7q0MUIeCop0ZFOwAnqW3AVVNvsBkv2KN+IHJryWAf0/iMQARAQABtBtEYWxlIDxyZGFs ZWsxOTY3QGdtYWlsLmNvbT6JAk4EEwEIADgWIQTZ7suruPBaS60bCYXvEM/XWu+ZnAUCXFzs yAIbIwULCQgHAgYVCgkICwIEFgIDAQIeAQIXgAAKCRDvEM/XWu+ZnN+7D/4/1dNG4aCz0+v+ 0dcjV5tY1feYEWCdHKyDzxWBxlCpd/0NPRQeNY4VMjbCl/sq7GkXi/c2SbfWDQ5BQRkkExG1 pSwuXSIehGok/4fpTi3HDAguRvzdCqlKPt7me05FyiC/WnpY5GOlJ3ruGw2qABv/RmV2q5b/ tkq7h1y1f16DTNr3/nsj8HzHcrHdXdL4kaYChSOe/dbQR9Stqak7eMyR+iwvrJMNF/CGl70P 2x5ybsXMDzRVOqNcpa5ZdhEMTVh6+vC1SOmm1BFMF8XCqBEvBbcHWDQmGYTdNCsS/ADm8CBl gvjJgLdIsAzoMu4WHQDFnzXAoArqFWgAf53isOS4AWrv29tF9b8Aa1vb7h5JEa+ArcMsA6Gl X38+GY6WXXaxKI9n3PTCWu9tPGnRh7mABjnwEosDDqmzw8aTAYECb3avDuGY2rmcjgh4H6RE w08d63j1T4d5J9wlm4TGtW/VHgbUFkATEdH3Acl/EjFiyqTiX7p8kU6Reu5enIkogA93xoQh Rmy7ZiST/5LN+ZkaOdyjIw0L+5KalslN9SKt809YxgJ6kPo657LNTFPiFvFA46/SEWcBYrzq Xk0wEW0gBRWf+BqN0qRhU0/EQ+QfRdLLFg2xtUePwlheYLXxfyDLrdCCOLWYpkzbjCZHLS4u 69smbvR9S9KBDNzJybxEWrkCDQRcXOzIARAA5IGRWTqaM44IJgBYghZg2fGj0Am7KWPhE7V7 T/EEe7vVSUEFqHtlHzI4ZK6Q0AZ9uAEjE8IJIQ7KoTjzNqAtabP0vp3s0szgtJlsZ+8vGKlQ my7fvzSrdoQL0Xn7CEwJYFXJ1EMUcYIQeoHG1cUAaXx73k9BFbjwjnUeMrqlV/ZovQlg7duW nESfQ7HZu5NrtYyY3jPMUouxiO9WQPh+IHxZbt1absF2VcvRAymD32RxGvMPbw6ChMRD/p9O 4PH7M5rXaxr78NXQX9E48vrI00f1cYb9NSN1HnSV8cW3jKObVjdBk6jPQwrMvdpgdQhUB9aZ HS/9mC9mmAgiXKyCpzXe7FPB6QznSfn4GIaC/luy1e6SLUkJhRK/niB+gq+Mfxg2zXNuDUTI cMGmpDCp3kgUoorkaltk8RW09io95BkXrGhcDNuSGZfAParBc7RXyYpbIcax8St7tEAd2oFh 4seYOPUlzuhGrPpqR/91wrFc4E1260GKauSr4UhMJv6tygBwyC0mmBMKi+ZXw6ZdZxA5fg7y 35P3TILjznCXXTDgRHq9A3NknKRMcgFacX6eIhANkMFo6oJVjuEgy1dvu1wFfDq7c+i8GAHu L4pYzyXYu6PporlNNU0xSwdVgzM/uuK0lt+UxCimgC+YR3IezgDcbfudb7h9dGIwL+bbPL0A EQEAAYkCNgQYAQgAIBYhBNnuy6u48FpLrRsJhe8Qz9da75mcBQJcXOzIAhsMAAoJEO8Qz9da 75mcXZ4P/1YXgWDZek7mhzrf6uaQzMxa92P89HeWz4PlgB/32symeEFAV04WazzBZffI8AYY rGA1Xmu/2VaB9+FOODyKhUWBc2UL0NRWBk6POwboyTdKlclmpixaN9zLcBt0YLejoRfN1B/5 aQf9/lUDZMnAiCyz0FgeqEMUshldmwWC35RqnjrCbbuk2vIqSH6BLDIXU6jQrLHE1DF0ai41 wLtQFAFXPhn45n0ZwYhVs4Z32z4sjXrIvgBgCaXa4HM+L1Klne0KiNM8ReFTTpTE0SgyDOSZ O3MOa2n77i6JbVtsbiFYnNeP3J9S/l3jevGpZEtNQOKrIm1MW8jGuHWtsDeMkT/mCcSodlkt PxIo+mMK9GpGvG2hW80LiohqNfUbNwAmr3blOYY4URPXPRnEnPs4pmTmL5owjw2dkg145i9I D42Tq+XZ6YtWt3SGzGbAYow6XwTwZ5NFAzV9UQuCGrDw4KWan6O6Z+VIYWsn0UMZlu1Obxna aocofkaUCbISK26kImuD1aA8juSHC18Qv1xUage6/UakbSxyDtACqt6hOVFKX3IA59ApdNRT +2x3iCmlvF9MJsGgFq6IpqL+Fk7iWV8Kjbz0wQOId6N9+JdQh3LrLaS7a1PowUm1z9DK5/O0 Yg+gpDnEOOFI7WM5u7a7FSM2Z/LXGVwel/0eWvLk9tN6 Message-ID: Date: Sun, 10 Feb 2019 10:27:32 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0 SeaMonkey/2.49.9.1 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 In-Reply-To: <20190210191213.f143979ac631765a9dbb6837@gentoo.org> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 4663f7f3-8a03-4f74-ab87-7c25853fae68 X-Archives-Hash: 3f28770adb2a7b72db413198ddacbd00 Andrew Savchenko wrote: > On Sun, 3 Feb 2019 23:47:35 -0600 Dale wrote: >> Howdy, >> >> Some may recall me mentioning using LastPass to manage my passwords.=C2= =A0 >> Obviously, it can generate very strong passwords that are different fo= r >> each site.=C2=A0 It can also remember them as well which makes things = more >> secure than using just a few passwords for all sites.=C2=A0 One for th= ings >> like financial sites, maybe a less secure one for some site you still >> want reasonably secure and a even weaker one for sites you don't care >> about hacking, and hackers likely won't either.=C2=A0 I know some peop= le who >> do this even today.=C2=A0 Heck, ages ago, I was one of them.=C2=A0 Thi= ngs change >> tho.=C2=A0 Some passwords can be hacked in seconds by a desktop comput= er, >> including my own if I had the software and knowledge to do it.=C2=A0 >> >> The one thing about most all password managers, they have a master >> password.=C2=A0 That one password unlocks the rest.=C2=A0 Trick is, ha= ving that >> one be a good one that is easy to remember, type on a keyboard and be >> secure, virtually unhackable but also unforgettable.=C2=A0 I've had wh= at used >> to be a strong password for a while.=C2=A0 Thing is, with today's comp= uting >> power, it really isn't anymore.=C2=A0 While no one could just guess it= , it >> could be cracked/hacked I'm sure.=C2=A0 I need to come up with a new o= ne that >> meets the requirements I just mentioned.=C2=A0 Strong, easy to remembe= r, easy >> to type but won't forget.=C2=A0 I've read that using maiden names, yea= rs of >> birth or whole dates of birth, actual names, pet's name, words in a >> dictionary and a whole list of other things makes it easier, especiall= y >> if you post a lot on social media, for hackers to use against you.=C2=A0= I'm >> trying to avoid that sort of thing obviously and have a couple ideas b= ut >> am curious as to what method others use, without exposing to much deta= il >> since this is public.=C2=A0 >> >> How do you, especially those who admin systems that are always being >> hacked at, generate strong passwords that meet the above?=C2=A0 I've g= oogled >> and found some ideas but if I use the same method, well, how many othe= rs >> are using that same method, if you know what I mean.=C2=A0 ;-)=C2=A0 J= ust looking >> for ideas.=C2=A0 > 1) Install app-admin/apg. > 2) apg -a1 -m40 > > Best regards, > Andrew Savchenko My password manager does that already.=C2=A0 The password I was trying to= come up with was the master password which I must easily remember, be secure and be easy to type.=C2=A0 The other passwords I let the password manager generate and remember as well.=C2=A0 I don't type those so they c= an be anything.=C2=A0 Goes to show tho, there is yet another tool to come up with passwords.=C2= =A0 lol=C2=A0 Dale :-)=C2=A0 :-)=C2=A0