Collaborate Disseminate
I have a password manager, an email, two computers with full disk encryption, their corresponding encrypted backup (two in total) on an external disk and user. How many passphrases should I use?
I was thinking of 4: one for password manage… Continue reading How many passphrases should I use?
From GitHub Docs:
With SSH keys, if someone gains access to your computer, the attacker can gain access to every system that uses that key. To add an extra layer of security, you can add a passphrase to your SSH key. To avoid entering the… Continue reading Doesn’t saving an SSH passphrase (as suggested by GitHub) negate the security benefits of using a passphrase?
I’ve been looking at entropy calculations for passphrases, in the context of estimating how long an attacker would take to guess that passphrase.
On the way, I passed through the Wikipedia article on passphrases. This starts from the premi… Continue reading Passphrase entropy calculation, Wikipedia version
On my system (Ubuntu 22.04) I have encrypted my private key with a passphrase and added it to the ssh agent with ssh-add.
On use of the key, I am prompted with the option "Automatically unlock this key whenever I’m logged in".
In… Continue reading Auto-unlock private key: which implications?
in the documentation of Ubuntu ssh keys, I was surprised to read
"If your RSA key has a strong passphrase, it might take your attacker a few hours to guess by brute force.".
Really? A good pseudorandom passphrase with enough le… Continue reading How resiliant is a private key passphase to brute force attacks?
I’m a beginner in cryptography and for my first project I use the client’s password to encrypt some data. More specifically, I use the password as passphrase in RSA private key generation). However, I do not want to trust the server when s… Continue reading Hide password from server
There are several plain text and encrypted text like:
Plain text
Encrypted text
10101004535
7Za9kHM9OH6tKTrtxy86gw==
10860586924
/nwjXW3MYkcATRS5Xyjx/A==
10480090635
/F0D9ePZffTIiH/P8mK+kw==
10861778058
VUtRdsB/qYOUflYzeF3G6A=… Continue reading Relation between plain text and encrypted in URL [duplicate]
Learn about passphrases and understand how you can use these strong yet memorable phrases to safeguard your accounts against hackers. Continue reading What Is a Passphrase? Examples, Types & Best Practices
I remember having read a blog post or a forum post, some years ago, about a TrueCrypt user whose Windows machine sometimes, at boot, did not ask for the TC passphrase and decrypted automatically the volume.
It turned out Windows, in some c… Continue reading Windows decrypting TC volume without passphrase?
Let’s assume person A chooses 15 words for a passphrase with an average length of 5. The passphrase meets following conditions.
Word conditions:
The first word is not a valid word and can’t be found in any dictionary. It’s twice the lengt… Continue reading How to analyze the security of a custom passphrase?