Okay. I had my thoughts of a http:// site,and you are all right in warning me about testing out passwords across or along the net even if it is a js apps locally. (Thanks also to "Luca Berra" bluca@xxxxxxxxxxx) I guess this means that the test is supposed to run only on my computer(?)
Thanks for a nice perl script, Heinz Diehl!
I noticed long ago that config the wireless part with YaST on my SuSE 10.0/1 YaST would not accept this sign: ' (accent aigue) as part of passphrase, for one or another reason, but Windows did and so the router. Could be an old bug.
I have cryptoloop on SuSE 10.1, but dm-crypt/LUKS on openSuSE 11.1 and on SLED 10 SP3.
A question that is a little bit off dm-crypt subjects: Is the security problems as to e.g. watermarks also affecting gnuPG? Well, I would think so if the ECB is used, and maybe as long as there is need for som IVector due to CBC. But has gnuPG completely different problems? I am not asking about symmetric or public keys, but more about the final encrypted result placed there on disk. - Maybe I should ask about this on this list.
I am a doctor and transfers daily info of thousands of patients every day on a USB-stick. Before I used to plaintextcopy them all to the stick, but now I always encrypts it as a tar-file with gpg. I transfer the journals from my office machine to home machines, just in case the office breaks down and I can just replace the machine. On the home machines I transfer the data to an encrypted partition with a script in bash that decrypts and mounts the partition, decrypts the tar-ball and empties the whole tree to its proper place, check the content to be the same and finally closes the loop or devicemapper (not to be forgotten!) and after that umounts the partition. Thereby I feel safe to go on internet. The office machine is an old SuSE 7.3 !! with hardware from the year of the Lord 2001. But this machine is NOT configured to internet - it is only a stand alone machine. I have a partition with SLED 10 on it, but it is very rare I ever am on net. The cable to the isdn card is detached all the time. Was sagst du über diese Sache, mein lieber Heinz? Stubborness and remnant Newbie, maybe.
Just to let you know that there is not only people with dm-itch or dm-tic on this site;
-------------------------------------------------------
> ----- Original Message -----
> From: "Heinz Diehl" <htd@xxxxxxxxxxxxxxxxx>
> To: dm-crypt@xxxxxxxx
> Subject: Re: Crack a dm-LUKS partition or harddisk
> Date: Thu, 5 Nov 2009 23:03:25 +0100
>
>
> On 05.11.2009, Si St wrote:
>
> > For my wireless router I double the character count to 32.
>
> You can safely use up to 63 characters. To set up wireless AP, I use this
> little script I hacked together quite some time ago, it works very well.
>
> It generates passwords in the correct character range for wireless AP
> using /dev/random. Save this in a file, do a "chmod +x " on it, and run
> it with the desired length as argument. In case it is a large passphrase
> you want to generate, you'll have to move the mouse a bit.
>
>
> #!/usr/bin/perl -Tw
>
> use strict;
>
> my $randkey;
> my $iter;
> my $howmany;
>
> $howmany = $ARGV[0];
>
> $randkey = &gen_randkey;
>
> if ($randkey) {
> print "Passphrase: $randkey\n"; }
> else {
> print "Something went wrong\n";
> }
>
> sub gen_randkey {
>
> my $keylength = $howmany;
> my $len = shift; $len = $keylength unless $len;
> my @range; @range = (33..126);
> my $id = &read_dev_random($len);
>
> return unless $id;
>
> $id =~ s/(.)/chr($range[ord($1) % $#range+1])/esg;
> return $id;
> }
>
> sub read_dev_random {
>
> my $len = shift;
> unless ($len) { print STDERR "No parameter given\n"; return; }
>
> eval {
> open(RANDOM, "/dev/random") or die; };
> if ($@) { print STDERR "Unable to open the random device\n"; return; }
>
> my $random;
> unless (read(RANDOM, $random, $len) == $len) {
> print STDERR "Unable to read from the random device\n"; return;
> }
>
> close(RANDOM);
> return $random;
> }
>
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@xxxxxxxx
> http://www.saout.de/mailman/listinfo/dm-crypt
>
--
_______________________________________________
Surf the Web in a faster, safer and easier way:
Download Opera 9 at http://www.opera.com
Powered by Outblaze
_______________________________________________
dm-crypt mailing list
dm-crypt@xxxxxxxx
http://www.saout.de/mailman/listinfo/dm-crypt
