Generated password has repetition

Tharre tharre3 at gmail.com
Thu May 4 18:54:50 CEST 2017


On 05/04, Jonathan Proulx wrote:
> and a non zero chance that it will generate "password1234" that
> doesn't mean accepting that is a good idea though, one also has to
> consider likely attack strategies.
>
> the example given is likely fine, but if you randomly get a password
> that you think is bad, regeneration is always an option.

Given the fact that the chance of that happening is the same as an
attacker guessing your password on the first try, you can safely ignore
this possibility.

And be careful with regenerating passwords based on random criteria, it
does introduce bias.

--
PGP ID: 0xC8F0B2F4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20170504/12d871bb/attachment.asc>


More information about the Password-Store mailing list