Sunday, October 22, 2006

A handy tutorial on passwords

How To Spot A Psychopath :: Nonsense passwords :: October :: 2006. He likes nonsense words, and uses KeePass to measure entropy. 70 bits sounds like a useful metric.

The OS X keychain utility has a similar built in password generator and metric. GRC has a web accessible random string generator. I'd like to see GRC add a 4th option limited to characters that are clearly distinguishable when printed, thus avoiding i and j, 0 and O, 1 and 7. (Means you need a longer string to meet entropy requirements.)

No comments: