•Re: Creating random passwords?

Try Crypt::GeneratePassword. If it's good enough for a federal information standard, it's good enough for me.

-- Randal L. Schwartz, Perl hacker
Be sure to read my standard disclaimer if this is a reply.

Comment on •Re: Creating random passwords?

Replies are listed 'Best First'.
Re: •Re: Creating random passwords? by sauoq (Abbot) on Jul 04, 2003 at 04:53 UTC
If it's good enough for a federal information standard, it's good enough for me. Funny. I must have been reading up on this stuff even as you were writing your reply... The author of the module you suggested, Crypt::GeneratePassword, wrote it in part because he felt the FIPS standard wasn't good enough. It isn't based on FIPS-181. If you believe him, the algorithm he uses is better than that in Crypt::RandPasswd (which is based on FIPS-181.) In any case, A New Attack on Random Pronounceable Password Generators (external link, PDF) was a good read. -sauoq "My two cents aren't worth a dime.";	[reply]

Replies are listed 'Best First'.

Re: •Re: Creating random passwords?
by sauoq (Abbot) on Jul 04, 2003 at 04:53 UTC

If it's good enough for a federal information standard, it's good enough for me.

Funny. I must have been reading up on this stuff even as you were writing your reply...

The author of the module you suggested, Crypt::GeneratePassword, wrote it in part because he felt the FIPS standard wasn't good enough. It isn't based on FIPS-181. If you believe him, the algorithm he uses is better than that in Crypt::RandPasswd (which is based on FIPS-181.)

In any case, A New Attack on Random Pronounceable Password Generators (external link, PDF) was a good read.

-sauoq
"My two cents aren't worth a dime.";

[reply]