[Chester LUG] Password manager

Les Pritchard les.pritchard at gmail.com
Thu Jul 19 09:53:07 UTC 2012


Hi Mike,

The app will generate 64 character strings, so would that be long enough?
The reason I created three simplified sizes of passwords (8,16 and 64) was
because there are still a load of sites with what seem to be arbitrary
password length limits. Now we could argue that if some of these sites are
restricting password size to 8 characters they are doing some worrying
things! But ignoring that issue, my aim was to offer some options for these
bad sites. It's also the reason the passwords generated don't use special
characters.

In my original version I included them, but hit a few problems using the
output with several sites. The other reason I have three simple levels of
password length is to avoid people generating a password then forgetting
what length they'd made it! By using the guides an average user should end
up using the correct length (this was an Apple style "don't give people too
much choice for their own good" design decision :-). Of course more tech
savy users can use whatever length they want.

Thanks

Les

On Thursday, July 19, 2012, Michael Crilly wrote:

> Les,
>
> Programmatically speaking, is there a means of producing pass phrases
> instead of passwords? If you use a pass phrase, the search space of
> the result is greater than that of a password. This is especially
> important when you consider the availability of GPUs in the Cloud and
> off the shelf for pennies. Sentences are harder for a computer to
> guess than a random array of characters.
>
> - MC
>
> On 17 July 2012 13:49, Les Pritchard <les.pritchard at gmail.com<javascript:;>>
> wrote:
> > Hi all,
> >
> > I mentioned at the last LUG meet that I've been working on a small
> > password manager app, well it's now available and it would be great if
> > some of you could take a look and try it out. The big difference
> > between this and the common 'password safe' type system is that this
> > tool never saves any passwords, so there's no central location to be
> > attacked or lost. It works by creating repeatable passwords for each
> > set of variables (your common password, pin and the name of the
> > account). Take a look at the website for more information about the
> > app and to download a copy - www.passeto.com.
> >
> > There's a desktop app (Linux version of course!) and an online version
> > for when you're on the move. I'm going to add some more features in
> > the near future and hopefully produce a mobile app.
> >
> > Please take a look and email directly if you have any questions,
> > feedback or feature requests! It's not Open Source (yet) but is free
> > for all.
> >
> > Thanks
> >
> > Les
> >
> > _______________________________________________
> > Chester mailing list
> > Chester at mailman.lug.org.uk <javascript:;>
> > https://mailman.lug.org.uk/mailman/listinfo/chester
>
>
>
> --
>
> - Crilly
>
> _______________________________________________
> Chester mailing list
> Chester at mailman.lug.org.uk <javascript:;>
> https://mailman.lug.org.uk/mailman/listinfo/chester
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/chester/attachments/20120719/a2a1b041/attachment.html>


More information about the Chester mailing list