[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE Request: pwgen
From:       Solar Designer <solar () openwall ! com>
Date:       2013-05-28 1:47:09
Message-ID: 20130528014709.GA480 () openwall ! com
[Download RAW message or body]

On Tue, May 28, 2013 at 01:33:48AM +0000, Michael Samuel wrote:
> The default mode of this program generates extremely low entropy passwords - 
> It is probably worth changing the default to "secure" mode and removing 
> phonemes mode, to avoid putting users at risk.

Yes.  You have seen the thread on pwgen from last year, right? -

http://www.openwall.com/lists/oss-security/2012/01/22/6

(Use the "thread-prev" link for more messages from that thread.)

Alexander
[prev in list] [next in list] [prev in thread] [next in thread]